VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 12, 1999· Updated Apr 16, 2026

CVE-1999-0289

CVE-1999-0289

Description

The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL.

Affected products

17
  • Apache/HTTP Server
    cpe:2.3:a:apache:http_server:-:*:*:*:*:*:*:*
  • osv-coords16 versions
    < 2.4.66-r0+ 15 more
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0
    • (no CPE)range: < 2.4.66-r0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.