CVE-1999-0881

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Oct 26, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0881 is a vulnerability affecting the Falcon web server. An attacker can exploit this issue by using a ".." (dot dot) attack in a request, allowing them to read arbitrary files on the server. This vulnerability poses a significant risk as an attacker could potentially gain unauthorized access to sensitive information. The Falcon web server did not adequately restrict access to files, making it susceptible to this type of attack. To mitigate the risk, it is recommended that users upgrade to the latest version of the Falcon web server or implement appropriate access controls.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Blueface

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlPrJ
https://www.cve.org/CVERecord?id=CVE-1999-0881
https://nvd.nist.gov/vuln/detail/CVE-1999-0881

Back to Vulnerability Database

CVE-1999-0881

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations