CVE-1999-1547

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 25, 1999

Updated: Nov 20, 2024

CWE ID 20

Summary

CVE-1999-1547 is a vulnerability affecting Oracle Web Listener 2.1. Attackers can exploit this issue by manipulating URLs, replacing a character with its HTTP-encoded equivalent to bypass access restrictions remotely. This vulnerability poses a significant risk as it allows unauthorized access to protected resources. Oracle Web Listener 2.1 users are advised to apply the available patch or upgrade to a more secure version to mitigate this risk. Attackers can leverage this issue for various malicious activities, including data theft and unauthorized system modifications.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle Corp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlMQS
https://www.cve.org/CVERecord?id=CVE-1999-1547
https://nvd.nist.gov/vuln/detail/CVE-1999-1547

Back to Vulnerability Database

CVE-1999-1547

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations