Vulnerabilities for Directory server (...) - CXSECURITY.COM

Vulnerabilities for 'Directory server'

2004-12-31

CVE-2004-1236

Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allows remote attackers to execute arbitrary code.

CVE-2004-0826

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

2001-06-02

CVE-2001-0164

Buffer overflow in Netscape Directory Server 4.12 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed recipient field.

2000-12-11

CVE-2000-1076

CWE-Other

Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.

CVE-2000-1075

Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.

1999-05-01

CVE-1999-0807

The Netscape Directory Server installation procedure leaves sensitive information in a file that is accessible to local users.

1998-06-26

CVE-1999-0007

Information from SSL-encrypted sessions via PKCS #1.

>>> Vendor: Netscape 21 Products

Messaging server

Certificate server

Collabra server

Directory server

Enterprise server

Fasttrack server

Commerce server

Communications server

Professional services ftpserver

Netscape messaging server multiplexor

Publishingxpert

Personalization engine

Portable runtime api

Certificate management system

Copyright 2024, cxsecurity.com