CVE-1999-1277

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Dec 24, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1277 is a vulnerability affecting the BackWeb client where the username and password for proxy authentication are stored in cleartext in the Communication registry key. This allows local users with access to the registry to potentially gain privileged access by reading the cleartext password. This security oversight could result in unauthorized access and privilege escalation within the affected system. Users are advised to take immediate steps to secure their registry keys and update their software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlV5z
https://www.cve.org/CVERecord?id=CVE-1999-1277
https://nvd.nist.gov/vuln/detail/CVE-1999-1277

Back to Vulnerability Database

CVE-1999-1277

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations