Vulnerability Description
Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netscape | Directory Server | 4.12 |
| Sun | Iplanet Certificate Management System | 4.2 |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5422
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5422
FAQ
What is CVE-2000-1076?
CVE-2000-1076 is a vulnerability with a CVSS score of 10.0 (HIGH). Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administra...
How severe is CVE-2000-1076?
CVE-2000-1076 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-1076?
Check the references section above for vendor advisories and patch information. Affected products include: Netscape Directory Server, Sun Iplanet Certificate Management System.