CVE-1999-1590 — LOW (3.5) — White Hats Nepal

Vulnerability Description

Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via ".." sequences in the image parameter, a different vulnerability than CVE-1999-0021.

CVSS Score

3.5

LOW

AV:N/AC:M/Au:S/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Wwwcount	Wwwcount	2.3

References

http://seclists.org/bugtraq/1997/Oct/0058.htmlExploitVendor Advisory
http://seclists.org/bugtraq/1997/Oct/0058.htmlExploitVendor Advisory

FAQ

What is CVE-1999-1590?

CVE-1999-1590 is a vulnerability with a CVSS score of 3.5 (LOW). Directory traversal vulnerability in Muhammad A. Muquit wwwcount (Count.cgi) 2.3 allows remote attackers to read arbitrary GIF files via ".." sequences in the image parameter, a different vulnerabilit...

How severe is CVE-1999-1590?

CVE-1999-1590 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-1590?

Check the references section above for vendor advisories and patch information. Affected products include: Wwwcount Wwwcount.