CVE-1999-0498

CVSS 2.0 Score 10 of 10 (high)

Details

Published Sep 27, 1991
Updated: Nov 20, 2024

Summary

CVE-1999-0498 is a vulnerability affecting the Trivial File Transfer Protocol (TFTP) service. The issue arises when TFTP is not run in a restricted directory, making it possible for remote attackers to access sensitive information, such as password files, that they should not be able to reach. This lack of restriction can lead to unauthorized access and potential data breaches. Organizations using TFTP should ensure proper directory restrictions to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share