CVE-1999-1154

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 9, 1998
Updated: Nov 20, 2024

Summary

CVE-1999-1154 is a vulnerability affecting the LakeWeb Filemail CGI script. This issue allows remote attackers to execute arbitrary commands by manipulating the recipient email address with shell metacharacters. An attacker could exploit this flaw to gain unauthorized access to the system and potentially install malware or steal sensitive information. The vulnerability poses a significant risk to any organization using the outdated Filemail CGI script, making it crucial to apply the available patch as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share