CVE-1999-1050

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Nov 12, 1999
Updated: Dec 19, 2017

Summary

CVE-1999-1050 is a directory traversal vulnerability affecting the Matt Wright FormHandler.cgi script. An attacker can exploit this issue by manipulating the 'reply_message_attach' attachment parameter with a '..' (dot dot) value or using a filename as a template to read arbitrary files remotely. This vulnerability poses a significant risk as it allows unauthorized access to sensitive data.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share