CVE-1999-1155

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 9, 1998
Updated: Nov 20, 2024

Summary

CVE-1999-1155 is an old vulnerability affecting the LakeWeb Mail List CGI script. This issue enables remote attackers to execute arbitrary commands by exploiting shell metacharacters present in the recipient email address. An attacker could send a specially crafted email to manipulate the script and run malicious commands on the targeted system, potentially leading to serious security risks. This vulnerability underscores the importance of updating and securing outdated software to protect against known threats.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share