CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-0146

The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.053

EPSS Ranking 89.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/1975
https://exchange.xforce.ibmcloud.com/vulnerabilities/298
http://www.securityfocus.com/bid/1975
https://exchange.xforce.ibmcloud.com/vulnerabilities/298

Products affected by CVE-1999-0146

Ncsa » Campas » Version: Any

cpe:2.3:a:ncsa:campas:*
Ncsa » Servers » Version: Any

cpe:2.3:a:ncsa:servers:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-0146

Products

Pricing

Contact Us