Lucene search

[email protected]CVE-1999-0399

HistoryJan 01, 1999 - 5:00 a.m.

CVE-1999-0399

1999-01-0105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

mirc 5.5

remote attacker

malicious files

command execution

vulnerability

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.1%

JSON

The DCC server command in the Mirc 5.5 client doesn’t filter characters from file names properly, allowing remote attackers to place a malicious file in a different location, possibly allowing the attacker to execute commands.

CPENameOperatorVersion
khaled_mardam-bey:mirckhaled mardam-bey mirceq5.5

CPE	Name	Operator	Version
khaled_mardam-bey:mirc	khaled mardam-bey mirc	eq	5.5

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0399

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.1%

JSON

Related for CVE-1999-0399

cvelist1