CVE-1999-0146

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Jul 15, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-0146 is a vulnerability affecting the campas CGI program, which was provided with some NCSA web servers. An attacker can exploit this issue by injecting encoded carriage return characters into the query string of a maliciously crafted request. This allows the attacker to execute arbitrary commands, including reading protected files such as the password file, posing a significant security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlP26
https://www.cve.org/CVERecord?id=CVE-1999-0146
https://nvd.nist.gov/vuln/detail/CVE-1999-0146

Back to Vulnerability Database

CVE-1999-0146

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations