Vulnerability Description
Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Network Associates | Net Tools Pki Server | 1.0 |
References
- ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0166.htmlPatchVendor Advisory
- http://www.osvdb.org/4353
- http://www.securityfocus.com/bid/1364PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4743
- ftp://ftp.tis.com/gauntlet/hide/pki/hotfix.txt
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0166.htmlPatchVendor Advisory
- http://www.osvdb.org/4353
- http://www.securityfocus.com/bid/1364PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4743
FAQ
What is CVE-2000-0528?
CVE-2000-0528 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Net Tools PKI Server does not properly restrict access to remote attackers when the XUDA template files do not contain absolute pathnames for other files.
How severe is CVE-2000-0528?
CVE-2000-0528 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0528?
Check the references section above for vendor advisories and patch information. Affected products include: Network Associates Net Tools Pki Server.