CVE-2000-0149

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Feb 8, 2000
Updated: Nov 20, 2024

Summary

CVE-2000-0149 is a vulnerability affecting the Zeus web server. Attackers can exploit this issue by appending a null character (%00) to the end of a URL for a CGI program, allowing them to view the source code of the program remotely. This vulnerability poses a significant risk to web applications running on the affected server, as the exposed source code could provide attackers with valuable information for further exploitation. Organizations running Zeus web servers should apply the available patch as soon as possible to mitigate this risk and secure their web applications.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share