CVE-1999-1250

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Aug 19, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-1250 is a vulnerability affecting the CGI program in the Lasso application by Blue World, which was used on WebSTAR and other servers. This issue allows remote attackers to access and read arbitrary files, potentially leading to sensitive data exposure. The flaw arises due to insufficient input validation in the application. Attackers can exploit this vulnerability by sending specially crafted requests to the affected server, thereby bypassing intended access controls and gaining unauthorized access to files. This vulnerability poses a significant risk to web servers that utilize the Lasso application and have not applied the necessary security patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-1999-1250

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations