CVE-1999-1547

CVSS 7.5 - HIGH

Description

Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent.

Affected Products

Vendor	Product	Version
oracle	web_listener	`2.1`

References

http://marc.info/?l=bugtraq&m=94359982417686&w=2

http://marc.info/?l=ntbugtraq&m=94390053530890&w=2

http://www.securityfocus.com/bid/841

http://marc.info/?l=bugtraq&m=94359982417686&w=2

http://marc.info/?l=ntbugtraq&m=94390053530890&w=2

http://www.securityfocus.com/bid/841

Weakness Types

CWE-20

CVE Information

CVE ID:: CVE-1999-1547
Published:: 1999-11-25
Modified:: 2026-04-16
CVSS Score:: 7.5
Severity:: HIGH
Vector:: AV:N/AC:L/Au:N/C:P/I:P/A:P

Affected Vendors

oracle

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL