CVE-1999-1444

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Dec 31, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1444 is a cybersecurity vulnerability affecting Alibaba version 2.0. The genkey utility in this software generates RSA key pairs with an exponent of 1, rendering the encryption ineffective. Consequently, transactions sent using these key pairs are transmitted in cleartext, posing a significant security risk to users. Attackers could intercept and read sensitive information, including login credentials and financial data, during transmission. It is essential for users to upgrade to a secure version of Alibaba to mitigate this vulnerability and protect against potential data breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share