CVE-1999-0993

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 13, 1999
Updated: Nov 20, 2024
CWE ID 665

Summary

CVE-1999-0993 is a vulnerability affecting Microsoft Exchange Server 5.5. Hackers can exploit this issue by manipulating Access Control Lists (ACLs) without the changes taking effect immediately. The cache of the directory store needs to be refreshed before the new ACL settings become active, providing an opportunity for unauthorized access or modification. This vulnerability can pose a significant risk if not addressed promptly. Microsoft released a patch to mitigate this issue, and administrators are advised to apply it to prevent potential security breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Exchange Server

Affected Vendors

  • Microsoft