Description

In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe).

Remediation

References

CVE-1999-0450

Related Vulnerabilities

WordPress Plugin Easy Contact Forms Export 'file' Parameter Information Disclosure (1.1.0)

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5022)

WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.48.9)

Ruby Inefficient Regular Expression Complexity Vulnerability (CVE-2023-28756)

WordPress Plugin BuddyPress Global Search Cross-Site Scripting (1.1.0)

Severity

High

Classification

CVE-1999-0450

Tags

Missing Update Known Vulnerabilities