CVE-1999-0239
published 1998-01-01CVE-1999-0239: Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
PriorityP335high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
7.45%
93.7th percentile
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netscape | fasttrack_server | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vcjq-7hcj-xh74: Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET
ghsa_unreviewed·2022-04-30
CVE-1999-0239 [MEDIUM] CWE-178 GHSA-vcjq-7hcj-xh74: Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
Red Hat
samba: potential DoS in the internal DNS server
vendor_redhat·2014-05-28·CVSS 5.0
CVE-2014-0239 [MEDIUM] samba: potential DoS in the internal DNS server
samba: potential DoS in the internal DNS server
The internal DNS server in Samba 4.x before 4.0.18 does not check the QR field in the header section of an incoming DNS message before sending a response, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged response packet that triggers a communication loop, a related issue to CVE-1999-0103.
Statement: Not vulnerable. This issue does not affect the version of samba as shipped with Red Hat Enterprise Linux 5 and 6. This issue does not affect the version of samba3x as shipped with Red Hat Enterprise Linux 5. This issue does not affect the version of samba4 as shipped with Red Hat Enterprise Linux 6.
Package: samba (Red Hat Enterprise Linux 4) - Not affected
Package: samba (Red Hat Enterpri
No detection rules found.
No writeups or analysis indexed.
1998-01-01
Published