CVE-1999-0286

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jan 1, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0286 refers to a vulnerability in certain NT web servers where adding a space at the end of a URL can grant attackers unauthorized access to the source code of active pages. This issue arises due to insufficient input validation, which permits the server to treat the space as a separate request. Attackers can exploit this flaw to gain sensitive information, potentially leading to security breaches and unintended consequences. It is essential for affected organizations to apply relevant patches or updates to mitigate the risk associated with this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlJ2y
https://www.cve.org/CVERecord?id=CVE-1999-0286
https://nvd.nist.gov/vuln/detail/CVE-1999-0286

Back to Vulnerability Database

CVE-1999-0286

CVSS 2.0 Score 10 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations