CVE-1999-1260

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Feb 15, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1260 is a vulnerability affecting mSQL (Mini SQL) version 2.0.6. This issue permits remote attackers to access sensitive server data through the ServerStats query. The obtained information includes details on logged users, database names, and server version, posing a potential security risk. Attackers can exploit this vulnerability to gain valuable insights into the database configuration and potentially launch further attacks. It is recommended that users upgrade to a patched version of mSQL to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlU--
https://www.cve.org/CVERecord?id=CVE-1999-1260
https://nvd.nist.gov/vuln/detail/CVE-1999-1260

Back to Vulnerability Database

CVE-1999-1260

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations