CVE-1999-1549

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 16, 1999

Updated: Nov 20, 2024

CWE ID 346

Summary

CVE-1999-1549 is a vulnerability affecting Lynx 2.x web browsers. The issue arises from Lynx's failure to distinguish between internal and external HTML, allowing a local attacker to read sensitive information from temporary files. This can result in the attacker crafting a malicious LYNXOPTIONS URL, which in turn modifies the user's configuration file and executes commands. This vulnerability poses a significant risk to users, as it can potentially result in the execution of arbitrary commands on the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlTHt
https://www.cve.org/CVERecord?id=CVE-1999-1549
https://nvd.nist.gov/vuln/detail/CVE-1999-1549

Back to Vulnerability Database

CVE-1999-1549

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations