Vulnerability Description
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netscape | Enterprise Server | 3.5 |
References
- http://www.securityfocus.com/bid/1075ExploitPatchVendor Advisory
- http://zsh.stupidphat.com/advisory.cgi?000311-1
- http://www.securityfocus.com/bid/1075ExploitPatchVendor Advisory
- http://zsh.stupidphat.com/advisory.cgi?000311-1
FAQ
What is CVE-2000-0237?
CVE-2000-0237 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows th...
How severe is CVE-2000-0237?
CVE-2000-0237 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0237?
Check the references section above for vendor advisories and patch information. Affected products include: Netscape Enterprise Server.