CVE-2000-1075

Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.

Published: Dec 11, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-1075
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sun / iplanet_certificate_management_system	4.2	4.2.x
netscape / directory_server	4.12	4.12.x

http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html
http://www.iplanet.com/downloads/patches/0122.html
http://www.osvdb.org/4086
http://www.osvdb.org/486
http://www.securityfocus.com/bid/1839
https://exchange.xforce.ibmcloud.com/vulnerabilities/5421

Vulnerability Database

CVE-2000-1075

Deep Security Visibility Without the Complexity