CVE-1999-0495

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jan 1, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0495 is a vulnerability affecting SMB (Server Message Block) shares. It allows remote attackers to traverse directories and access files outside of the intended share, by using the ".." (dot dot) notation in requests. This issue can lead to unauthorized data access and potential system compromise. The vulnerability existed in various operating systems of the time, including Windows NT 4.0 and 2000. It is recommended that affected systems be updated with appropriate patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlREV
https://www.cve.org/CVERecord?id=CVE-1999-0495
https://nvd.nist.gov/vuln/detail/CVE-1999-0495

Back to Vulnerability Database

CVE-1999-0495

CVSS 2.0 Score 10 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations