CVE-1999-0695

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Apr 11, 2000
Updated: Nov 20, 2024

Summary

CVE-1999-0695 is a vulnerability affecting the Sybase PowerDynamo personal web server. An attacker can exploit this issue by using a ".." (dot dot) technique, allowing them to access and read arbitrary files on the affected system. This poses a significant security risk, as sensitive information could be exposed to unauthorized users. The vulnerability occurs due to insufficient input validation, leaving the server open to file reading attacks. To mitigate this risk, it is recommended that users apply the available patch or upgrade to a newer version of the PowerDynamo server.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share