CVE-1999-1525

CVSS 2.0 Score 5.1 of 10 (medium)

Details

Published Mar 14, 1997
Updated: Nov 20, 2024

Summary

CVE-1999-1525 is a vulnerability affecting Macromedia Shockwave versions prior to 6.0. A malicious webmaster can exploit this issue by using the GetNextText command in a Shockwave movie, potentially granting unauthorized access to a user's email box and even internal web servers. This weakness exposes sensitive information and presents a significant risk to internet security. Users are strongly advised to update their Shockwave installations to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share