CVE-1999-1547
Oracle Web Li — CWE-20
EPSS 0.00635
- Published: 1999-11-25T05:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- Vendors: Oracle
- Products: Web Li
- CWE: CWE-20
CVE-1999-1547 — Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent. [Weakness: CWE-20]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No items for this vendor.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
Oracle Web Listener 2.1 allows remote attackers to bypass access restrictions by replacing a character in the URL with its HTTP-encoded (hex) equivalent.
🧠 Explainer: What this vulnerability means
Summary: The issue in Web Li by Oracle (CWE: unspecified) may enable attacks.
Impact: Potential impact includes remote code execution, data theft, or denial of service.
Mitigation: Until patched, restrict exposure, enforce least privilege, and monitor for suspicious activity.
CWE: CWE-20
- http://marc.info/?l=bugtraq&m=94359982417686&w=2 []
- http://marc.info/?l=ntbugtraq&m=94390053530890&w=2 []
- http://www.securityfocus.com/bid/841 [Exploit, Vendor Advisory]
- http://marc.info/?l=bugtraq&m=94359982417686&w=2 []
- http://marc.info/?l=ntbugtraq&m=94390053530890&w=2 []
- http://www.securityfocus.com/bid/841 [Exploit, Vendor Advisory]