Netscape : Security Vulnerabilities, CVEs, Published In 2000 CVSS score >= 9

CVE-2000-1076

Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.
Max CVSS
10.0
EPSS Score
0.57%
Published
2000-12-11
Updated
2017-12-19

CVE-2000-1074

csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.
Max CVSS
10.0
EPSS Score
1.50%
Published
2000-12-11
Updated
2017-10-10

CVE-2000-1071

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges.
Max CVSS
10.0
EPSS Score
0.93%
Published
2000-12-11
Updated
2017-10-10

CVE-2000-0961

Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command.
Max CVSS
10.0
EPSS Score
0.54%
Published
2000-12-19
Updated
2017-10-10

CVE-2000-0577

Netscape Professional Services FTP Server 1.3.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Max CVSS
10.0
EPSS Score
4.14%
Published
2000-06-21
Updated
2008-09-10
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close