Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0250

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-0250
Last Modified 05 Sep 2008 04:23:39
Published 02 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0250

Summary

The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via the INDEX command.

Vulnerable Systems

Application

  • Netscape Enterprise Server 3.0

  • Netscape Enterprise Server 4.0


References

XF - netscape-enterprise-list-directories

BID - 2285

BUGTRAQ - 20010124 [SAFER] Security Bulletin 010124.EXP.1.11


Last Updated: 27 May 2016 10:36:12