CVE-2001-0250

Published: Jun 2, 2001Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via the INDEX command.

Affected (2)

Products: Netscape: Enterprise Server

Netscape

1 product

Enterprise Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Netscape Enterprise Server	Version 3.0
Netscape Enterprise Server	Version 4.0

References (6)

http://archives.neohapsis.com/archives/bugtraq/2001-01/0396.html

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://www.securityfocus.com/bid/2285

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5997

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2001-01/0396.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://www.securityfocus.com/bid/2285

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5997

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.