CVE-1999-0695
CVSS 2.0 Score 5.0 of 10 (medium)
Details
Summary
CVE-1999-0695 is a vulnerability affecting the Sybase PowerDynamo personal web server. An attacker can exploit this issue by using a ".." (dot dot) technique, allowing them to access and read arbitrary files on the affected system. This poses a significant security risk, as sensitive information could be exposed to unauthorized users. The vulnerability occurs due to insufficient input validation, leaving the server open to file reading attacks. To mitigate this risk, it is recommended that users apply the available patch or upgrade to a newer version of the PowerDynamo server.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Sybase