CVE-1999-0067 — OS Command Injection in Apache Http Server

CWE-78 — OS Command Injection2 documents2 sources

Severity

10.0CRITICALNVD

EPSS

90.0%

top 0.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

2

Apache Http Server Ncsa Httpd

Timeline

PublishedMar 20

Latest updateSep 29

Description

phf CGI program allows remote command execution through shell metacharacters.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDncsa/ncsa_httpd1.5a

▶NVDapache/http_server1.0.3

🔴Vulnerability Details

1

CVEList

CVE-1999-0067: phf CGI program allows remote command execution through shell metacharacters↗1999-09-29

▶

CVE-1999-0067 — OS Command Injection in Apache | cvebase