CVE-1999-0384

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Jan 1, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0384 is a vulnerability affecting the Forms 2.0 ActiveX control, which was included with Visual Basic for Applications 5.0. This flaw enables an attacker to read data from a user's clipboard without permission when they access documents containing ActiveX content. By exploiting this vulnerability, an attacker can gain access to sensitive information, such as passwords or confidential data, that a user has copied to their clipboard. This vulnerability poses a significant risk to users browsing malicious websites or opening untrusted documents. To mitigate this risk, users should ensure they have the latest security patches installed and avoid accessing untrusted websites or documents with ActiveX content.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Microsoft Windows NT
Microsoft Windows 2000
Microsoft Visual Basic
Microsoft Office Outlook
Microsoft Project

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners