Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0669Microsoft Internet Explorer vulnerability

3 documents3 sources
Severity
4.0MEDIUMNVD
EPSS
14.4%
top 5.55%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedSep 1
Latest updateApr 30

Description

The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.

CVSS vector

AV:N/AC:H/C:P/I:P/A:NExploitability: 4.9 | Impact: 4.9

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-m9vr-8q37-f2rh: The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as de2022-04-30

💥Exploits & PoCs

1
Exploit-DB
Microsoft Internet Explorer 4/5 - ActiveX 'Eyedog' Remote Overflow1999-08-21
CVE-1999-0669 — Microsoft vulnerability | cvebase