PT-2000-1219 · Netscape · Netscape Enterprise Server

Published

2000-03-11

Updated

2008-09-10

CVE-2000-0237

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Netscape Enterprise Server with Web Publishing enabled (affected versions not specified)

Description The issue allows remote attackers to list arbitrary directories via a GET request for the "/publisher" directory. This directory provides a Java applet that enables the attacker to browse the directories.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0237

Affected Products

Netscape Enterprise Server

PT-2000-1219 · Netscape · Netscape Enterprise Server

CVE-2000-0237

Related Identifiers

Affected Products

References · 4