CVE-1999-1527

Published Nov 23, 1999

Last updated 8 years ago

Overview

Description: Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sun:forte:community_1.0_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7DF8E6B-3963-48BF-9384-B8F6F34FA4BB"
          },
          {
            "criteria": "cpe:2.3:a:sun:netbeans_developer:3.0_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C512F1D-D51D-4C44-B1BF-66801FCBD5EB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References