Netscape Enterprise_server
24 CVEs affecting Netscape Enterprise_server. Latest disclosed: 2019-01-31. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-1999-0012 | High | 7.0 | 1998-02-06 | Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names. |
CVE-2018-18940 | Medium | 6.1 | 2019-01-31 | servlet/SnoopServlet (a servlet installed by default) in Netscape Enterprise 3.63 has reflected XSS via an arbitrary parameter=[XSS] in the query string. A rem… |
CVE-2004-0826 | | 2004-12-31 | Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length f… | |
CVE-2002-1655 | | 2002-12-31 | The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-h… | |
CVE-2002-1654 | | 2002-12-31 | iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-… | |
CVE-2002-1042 | | 2002-10-04 | Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows plat… | |
CVE-2001-0251 | | 2001-06-02 | The Web Publishing feature in Netscape Enterprise Server 3.x allows remote attackers to cause a denial of service via the REVLOG command. | |
CVE-2001-0250 | | 2001-06-02 | The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via th… | |
CVE-2000-0308 | | 2001-03-12 | Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to g… | |
CVE-1999-0758 | | 2001-03-12 | Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL. | |
CVE-2000-0600 | | 2000-06-26 | Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL. | |
CVE-2000-0236 | | 2000-03-17 | Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and… | |
CVE-2000-0237 | | 2000-03-11 | Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, wh… | |
CVE-1999-0744 | | 2000-01-04 | Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request. | |
CVE-1999-1005 | | 1999-12-19 | Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. | |
CVE-1999-0853 | | 1999-12-01 | Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication proced… | |
CVE-1999-0751 | | 1999-09-13 | Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch. | |
CVE-1999-1130 | | 1999-07-30 | Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTM… | |
CVE-1999-0752 | | 1999-07-06 | Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake. | |
CVE-1999-0686 | | 1999-05-07 | Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL. |