CVE-1999-1273

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Feb 20, 1998
Updated: Dec 19, 2017

Summary

CVE-1999-1273 is a vulnerability affecting Squid Internet Object Cache version 1.1.20. Hackers can exploit this issue by encoding URLs with hexadecimal escape sequences, thereby bypassing the access control lists (ACLs) intended to restrict access to certain resources. This weakness presents a significant security risk, as it allows unauthorized users to gain unintended access to protected information. It is recommended that users of Squid Internet Object Cache 1.1.20 upgrade to a patched version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Squid Software

Affected Vendors

  • Squid Software Foundation