CVE-1999-1525

Sažetak

Macromedia Shockwave before 6.0 allows a malicious webmaster to read a user's mail box and possibly access internal web servers via the GetNextText command on a Shockwave movie.

Reference

http://marc.info/?l=bugtraq&m=87602167420670&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/1585
https://exchange.xforce.ibmcloud.com/vulnerabilities/1586
https://exchange.xforce.ibmcloud.com/vulnerabilities/460

CVSS

Base:	5.1
Impact:	6.4
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:H/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

19-12-2017 - 02:29

Objavljeno

14-03-1997 - 05:00