← CVECheck
HomeVulnerabilities

CVE-1999-1235 — MEDIUM severity vulnerability (Internet Explorer 5.0 records the username and password for)

Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user move

CVE IDCVE-1999-1235
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-08-25
Last modified2026-04-16
DescriptionInternet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →