CVE-1999-0699

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Apr 11, 2000
Updated: Sep 9, 2008

Summary

CVE-1999-0699 is a vulnerability affecting the Bluestone Sapphire web server. This issue enables session hijacking due to the server's use of easily predictable session IDs. An attacker can exploit this vulnerability by obtaining a valid session ID and manipulating it to gain unauthorized access to a user's session. This can potentially lead to sensitive data being accessed or modified without proper authorization. To mitigate this risk, it is recommended to implement stronger session ID management mechanisms, such as randomly generated session IDs or secure session ID transmission methods.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share