Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1076

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2000-1076
Last Modified 10 Sep 2008 03:06:32
Published 11 Dec 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-1076

Summary

Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.

Vulnerable Systems

Application

  • Netscape Directory Server 4.12

  • Sun Iplanet Certificate Management System 4.2


References

XF - iplanet-netscape-plaintext-password

BUGTRAQ - 20001026 [CORE SDI ADVISORY] iPlanet Certificate Management System 4.2 path traversal bug


Last Updated: 27 May 2016 10:36:00