Directory Server Security Vulnerabilities and Issues — Directory Server CVE List

Lucene search

NetscapeDirectory Server

7 matches found

CVE•added 2004/12/31 5:0 a.m.•142 views

CVE-2004-0826

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

7.5CVSS7.7AI score0.02995EPSS

CVE•added 1999/09/29 4:0 a.m.•78 views

CVE-1999-0007

Information from SSL-encrypted sessions via PKCS #1.

5CVSS7.4AI score0.05124EPSS

CVE•added 2001/05/07 4:0 a.m.•45 views

CVE-2000-1075

Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.

5CVSS6.6AI score0.04012EPSS

CVE•added 2005/01/06 5:0 a.m.•42 views

CVE-2004-1236

Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allows remote attackers to execute arbitrary code.

10CVSS7.7AI score0.34632EPSS

CVE•added 2001/09/18 4:0 a.m.•38 views

CVE-2001-0164

Buffer overflow in Netscape Directory Server 4.12 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed recipient field.

7.5CVSS7.9AI score0.02355EPSS

CVE•added 2000/12/11 5:0 a.m.•37 views

CVE-2000-1076

Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.

10CVSS7.5AI score0.00514EPSS

CVE•added 2000/01/04 5:0 a.m.•34 views

CVE-1999-0807

The Netscape Directory Server installation procedure leaves sensitive information in a file that is accessible to local users.

7.2CVSS6.3AI score0.0006EPSS