Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1418


Vulnerability Score 5.0 5.0
CVE Id CVE-1999-1418
Last Modified 05 Sep 2008 04:19:28
Published 01 May 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



ICQ99 ICQ web server build 1701 with "Active Homepage" enabled generates allows remote attackers to determine the existence of files on the server by comparing server responses when a file exists ("404 Forbidden") versus when a file does not exist ("404 not found").

Vulnerable Systems


  • Mirabilis Icq Web Front


BUGTRAQ - 19990501 Update: security hole in the ICQ-Webserver

BID - 246

Last Updated: 27 May 2016 10:35:24