CVE-1999-1509

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Nov 4, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1509 is a critical vulnerability affecting the Etype Eserv 2.50 web server. An attacker can exploit this directory traversal flaw by using a ".." (dot dot) in a URL, allowing them to read any file in the server's file system remotely. This vulnerability poses a significant risk as it grants unauthorized access to sensitive information, potentially leading to data breaches. To mitigate this risk, it is recommended that users upgrade to a patched version of the Etype Eserv web server or implement appropriate access controls to prevent unauthorized directory traversal.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

E-Type

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlUQr
https://www.cve.org/CVERecord?id=CVE-1999-1509
https://nvd.nist.gov/vuln/detail/CVE-1999-1509

Back to Vulnerability Database

CVE-1999-1509

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations