Vulnerability Details CVE-1999-1525
Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.2%
CVSS Severity
CVSS v2 Score 5.1
References
- http://marc.info/?l=bugtraq&m=87602167420670&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1585
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/460
- http://marc.info/?l=bugtraq&m=87602167420670&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1585
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/460
Products affected by CVE-1999-1525
-
cpe:2.3:a:macromedia:shockwave_flash_plugin:-
-
cpe:2.3:a:macromedia:shockwave_flash_plugin:6.0