CVE-1999-1155

N/A Unknown

Published: November 09, 1998 Modified: April 16, 2026

Description

LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Patch Vendor Advisory Exploit Third Party Advisory

http://lakeweb.com/scripts/

Source: cve@mitre.org

Vendor Advisory

Source: cve@mitre.org

Exploit Patch Vendor Advisory

Source: cve@mitre.org

http://lakeweb.com/scripts/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit Patch Vendor Advisory

Source: af854a3a-2127-422b-91ae-364da2661108

6 reference(s) from NVD

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

2.8%

86th percentile

Exploitation Status

Not in CISA KEV

lakeweb