Vulnerabilities > CVE-1999-1527 - Unspecified vulnerability in SUN Forte and Netbeans Developer
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Nessus
| NASL family | Web Servers |
| NASL id | NETBEANS.NASL |
| description | The remote host is running NetBeans (recently renamed to 'Forte') Java IDE. There is a bug in this version that allows anyone to browse the files on this system. This plugin has been deprecated. Webmirror3 (plugin ID 10662) will identify a browsable directory. |
| last seen | 2018-07-18 |
| modified | 2018-07-16 |
| plugin id | 10149 |
| published | 1999-11-24 |
| reporter | Tenable |
| source | https://www.tenable.com/plugins/index.php?view=single&id=10149 |
| title | Sun NetBeans Java IDE HTTP Server IP Restriction Bypass Arbitrary File/Directory Access (deprecated) |