CVE-1999-1052

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Aug 24, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1052 is a vulnerability affecting Microsoft FrontPage. The issue lies in the storing of form results in a default, world-readable location in '/_private/form_results.txt'. This document, which contains information submitted by other users, is accessible in the document root, allowing remote attackers to gain access to possibly sensitive information. Microsoft FrontPage users are advised to secure their form data by changing the default location or adding appropriate access restrictions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft FrontPage

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/Lb5fp2
https://www.cve.org/CVERecord?id=CVE-1999-1052
https://nvd.nist.gov/vuln/detail/CVE-1999-1052

Back to Vulnerability Database