CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2008-0890 – 7.1: insecure default permissions on jars directory
https://notcve.org/view.php?id=CVE-2008-0890
Red Hat Directory Server 7.1 before SP4 uses insecure permissions for certain directories, which allows local users to modify JAR files and execute arbitrary code via unknown vectors. Red Hat Directory Server 7.1 anterior al SP4 usa permisos inseguros para ciertos directorios, lo que permite a usuarios locales modificar archivos JAR y ejecutar código de su elección mediante vectores no especificados. • http://secunia.com/advisories/29350 http://www.redhat.com/support/errata/RHSA-2008-0173.html http://www.securityfocus.com/bid/28204 http://www.securitytracker.com/id?1019577 https://exchange.xforce.ibmcloud.com/vulnerabilities/41152 https://access.redhat.com/security/cve/CVE-2008-0890 https://bugzilla.redhat.com/show_bug.cgi?id=436116 • CWE-264: Permissions, Privileges, and Access Controls CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 10.0EPSS: 11%CPEs: 1EXPL: 0CVE-2004-1236
https://notcve.org/view.php?id=CVE-2004-1236
Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allows remote attackers to execute arbitrary code. • http://marc.info/?l=bugtraq&m=110384298016120 http://secunia.com/advisories/14960 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57754-1 http://www.ciac.org/ciac/bulletins/p-083.shtml http://www.kb.cert.org/vuls/id/258905 http://www.securityfocus.com/bid/12099 https://exchange.xforce.ibmcloud.com/vulnerabilities/18676 https://access.redhat.com/security/cve/CVE-2004-1236 https://bugzilla.redhat.com/show_bug.cgi?id=1617398 •
CVSS: 7.5EPSS: 3%CPEs: 93EXPL: 0CVE-2004-0826
https://notcve.org/view.php?id=CVE-2004-0826
Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message. • http://marc.info/?l=bugtraq&m=109351293827731&w=2 http://www.securityfocus.com/bid/11015 http://xforce.iss.net/xforce/alerts/id/180 https://exchange.xforce.ibmcloud.com/vulnerabilities/16314 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2001-0164
https://notcve.org/view.php?id=CVE-2001-0164
Buffer overflow in Netscape Directory Server 4.12 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed recipient field. • http://www.atstake.com/research/advisories/2001/a030701-1.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/6233 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 3CVE-2000-1075 – iPlanet Certificate Management System 4.2 - Directory Traversal
https://notcve.org/view.php?id=CVE-2000-1075
Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services. • https://www.exploit-db.com/exploits/20324 https://www.exploit-db.com/exploits/20325 http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html http://www.iplanet.com/downloads/patches/0122.html http://www.osvdb.org/4086 http://www.osvdb.org/486 http://www.securityfocus.com/bid/1839 https://exchange.xforce.ibmcloud.com/vulnerabilities/5421 •