Lucene search

[email protected]CVE-1999-0174

HistoryFeb 01, 1997 - 5:00 a.m.

CVE-1999-0174

1997-02-0105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-0174

nvd

cgi program

remote attack

file exposure

6.9 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.039 Low

EPSS

Percentile

91.9%

JSON

The view-source CGI program allows remote attackers to read arbitrary files via a … (dot dot) attack.

CPENameOperatorVersion
netscape:communicatornetscape communicatoreq4.05
netscape:communicatornetscape communicatoreq4.07
netscape:communicatornetscape communicatoreq4.51
netscape:communicatornetscape communicatoreq4.06
netscape:communicatornetscape communicatoreq4.0
netscape:communicatornetscape communicatoreq4.6
netscape:communicatornetscape communicatoreq4.5

CPE	Name	Operator	Version
netscape:communicator	netscape communicator	eq	4.05
netscape:communicator	netscape communicator	eq	4.07
netscape:communicator	netscape communicator	eq	4.51
netscape:communicator	netscape communicator	eq	4.06
netscape:communicator	netscape communicator	eq	4.0
netscape:communicator	netscape communicator	eq	4.6
netscape:communicator	netscape communicator	eq	4.5

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0174

6.9 Medium

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.039 Low

EPSS

Percentile

91.9%

JSON

Related for CVE-1999-0174

nessus1