CVE-1999-1124

EPSS 0.31%
Published 31.12.1999 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

HTTP Client application in ColdFusion allows remote attackers to bypass access restrictions for web pages on other ports by providing the target page to the mainframeset.cfm application, which requests the page from the server, making it look like the request is coming from the local host.

Affected products Warnungen 0 Metrics 2 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Allaire ≫ Coldfusion

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.31%	0.512

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://packetstorm.securify.com/mag/phrack/phrack54/P54-08

https://nvd.nist.gov/vuln/detail/CVE-1999-1124

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-1124

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-1124

EUVD