CVE-1999-1255

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Feb 19, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1255 is an old vulnerability affecting the Hyperseek web server. attackers can exploit this weakness by directly calling the admin.cgi program with an 'edit_file' action parameter, allowing them to modify the hyperseek configuration remotely. This vulnerability poses a serious security risk, as unauthorized configuration changes can lead to system compromise or data breaches. System administrators are strongly encouraged to patch or upgrade their Hyperseek installations to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlMOh
https://www.cve.org/CVERecord?id=CVE-1999-1255
https://nvd.nist.gov/vuln/detail/CVE-1999-1255

Back to Vulnerability Database

CVE-1999-1255

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations