Enterprise Server@3.5 Security Vulnerabilities and Issues — Enterprise Server@3.5 CVE List

Lucene search

NetscapeEnterprise Server3.5

4 matches found

CVE•added 2000/10/13 4:0 a.m.•461 views

CVE-2000-0237

Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.

6.4CVSS9.4AI score0.00445EPSS

CVE•added 2004/12/31 5:0 a.m.•142 views

CVE-2004-0826

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

7.5CVSS7.7AI score0.02995EPSS

CVE•added 2005/03/28 5:0 a.m.•37 views

CVE-2002-1654

iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without ...

7.5CVSS7.3AI score0.0178EPSS

CVE•added 2005/03/28 5:0 a.m.•37 views

CVE-2002-1655

The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request.

5CVSS7AI score0.01949EPSS