CVE-1999-1130

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Jul 30, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1130 represents a vulnerability in the Netscape Enterprise Server 3.5.1, and potentially other versions, where the default search engine configuration allows remote attackers to access the source code of JHTML files. By exploiting the HTML-tocrec-demo1.pat search command pattern, attackers can gain unauthorized read access to these files. This issue may pose a significant risk if sensitive information is stored within the JHTML files. It is essential for affected organizations to update their server configurations to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share