Unrated severityNVD Advisory· Published Aug 27, 1999· Updated Apr 16, 2026

CVE-1999-1016

Description

Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell.

Affected products

Microsoft/Frontpage
cpe:2.3:a:microsoft:frontpage:*:*:express:*:*:*:*:*
Microsoft/Internet Explorer
cpe:2.3:a:microsoft:internet_explorer:5.0:*:*:*:*:*:*:*
Microsoft/Outlook Express
cpe:2.3:a:microsoft:outlook_express:5.0:*:*:*:*:*:*:*
Qualcomm/Eudora
cpe:2.3:a:qualcomm:eudora:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/606nvdExploitVendor Advisory
marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000