Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Iplanet Directory Server Security Vulnerabilities

cve
cve

CVE-2006-3159

pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error...

6.5AI Score

0.0004EPSS

2006-06-22 10:06 PM
21
cve
cve

CVE-2003-0676

Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot)...

7.2AI Score

0.01EPSS

2003-08-27 04:00 AM
28
cve
cve

CVE-2002-1042

Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat...

6.8AI Score

0.32EPSS

2002-10-04 04:00 AM
30
cve
cve

CVE-2001-1307

Buffer overflows in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test...

7.5AI Score

0.028EPSS

2002-05-03 04:00 AM
19
cve
cve

CVE-2001-1308

Format string vulnerabilities in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test...

7.6AI Score

0.074EPSS

2002-05-03 04:00 AM
27
cve
cve

CVE-2001-1306

iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test...

7.8AI Score

0.015EPSS

2002-05-03 04:00 AM
29
cve
cve

CVE-2000-1075

Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator...

6.6AI Score

0.008EPSS

2001-05-07 04:00 AM
28
cve
cve

CVE-2000-1076

Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the...

7.5AI Score

0.006EPSS

2000-12-11 05:00 AM
20