National Vulnerability Database

National Vulnerability Database

National Vulnerability

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:netscape:enterprise_server:3.5.1
There are 7 matching records.
Vuln ID Summary CVSS Severity

Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message.

Published: December 31, 2004; 12:00:00 AM -05:00
V2: 7.5 HIGH

Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL.

Published: March 12, 2001; 12:00:00 AM -05:00
V2: 5.0 MEDIUM

Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp-cs-dump.

Published: March 17, 2000; 12:00:00 AM -05:00
V2: 5.0 MEDIUM

Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.

Published: December 01, 1999; 12:00:00 AM -05:00
V2: 10.0 HIGH

Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch.

Published: September 13, 1999; 12:00:00 AM -04:00
V2: 5.0 MEDIUM

Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTML files by specifying a search command using the HTML-tocrec-demo1.pat pattern file.

Published: July 30, 1999; 12:00:00 AM -04:00
V2: 5.0 MEDIUM

Information from SSL-encrypted sessions via PKCS #1.

Published: June 26, 1998; 12:00:00 AM -04:00
V2: 5.0 MEDIUM