CyberSec.Space Logo
Back to CVE Browser

CVE-1999-0527

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0530%
EPSS Percentile26.65th
PublishedJan 1, 1999
Last ModifiedApr 16, 2026

Vulnerability Description

The permissions for system-critical data in an anonymous FTP account are inappropriate. For example, the root directory is writeable by world, a real password file is obtainable, or executable commands such as "ls" can be overwritten.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6253
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6253

Related Vulnerabilities

CVE-1999-057910.0

A Windows NT system's registry audit policy does not log an event success or failure for non-critical registry keys.

CVE-1999-079910.0

Buffer overflow in bootpd 2.4.3 and earlier via a long boot file location.

CVE-1999-093510.0

classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form.

CVE-1999-058010.0

The HKEY_LOCAL_MACHINE key in a Windows NT system has inappropriate, system-critical permissions.