← CVECheck
HomeVulnerabilities

CVE-1999-0975 — MEDIUM severity vulnerability (The Windows help system can allow a local user to execute co)

The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.

CVE IDCVE-1999-0975
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-12-10
Last modified2026-04-16
DescriptionThe Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →