CVE-1999-0668

Summary

CVE-1999-0668 is a vulnerability affecting the scriptlet.typelib ActiveX control, which is designated as "safe for scripting" in Internet Explorer. This misclassification permits remote attackers to execute arbitrary commands, as demonstrated by the exploit known as Bubbleboy. The vulnerability exists due to the control's inadequate access control, allowing malicious code to bypass security restrictions and execute potentially harmful actions within the user's browser. Exploitation of this issue can lead to serious security consequences, including data theft and system compromise.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.