CVE-1999-1277

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Dec 24, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1277 is a vulnerability affecting the BackWeb client software. The issue lies in the storage of cleartext username and password information for proxy authentication in the Communication registry key. This means that other local users with access to the system can potentially read the password, resulting in unauthorized privilege escalation. This vulnerability highlights the importance of securely managing authentication credentials to prevent unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlV5z
https://www.cve.org/CVERecord?id=CVE-1999-1277
https://nvd.nist.gov/vuln/detail/CVE-1999-1277

Back to Vulnerability Database

CVE-1999-1277

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations