CVSS: 7.5EPSS: 4%CPEs: 11EXPL: 4CVE-2002-1654
https://notcve.org/view.php?id=CVE-2002-1654
iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection. • http://lists.virus.org/vulnwatch-0201/msg00008.html http://securitytracker.com/id?1003157 http://www.kb.cert.org/vuls/id/985347 http://www.kb.cert.org/vuls/id/AAMN-567NFX http://www.procheckup.com/vulnerabilities/pr0105.html http://www.securiteam.com/securitynews/5IP0G0060Q.html http://www.securityfocus.com/bid/3831 https://exchange.xforce.ibmcloud.com/vulnerabilities/7845 •
CVSS: 5.0EPSS: 1%CPEs: 2EXPL: 3CVE-2001-0250 – Netscape Enterprise Server 3.0/4.0 - 'Index' Disclosure
https://notcve.org/view.php?id=CVE-2001-0250
The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via the INDEX command. • https://www.exploit-db.com/exploits/20591 http://archives.neohapsis.com/archives/bugtraq/2001-01/0396.html http://www.securityfocus.com/bid/2285 https://exchange.xforce.ibmcloud.com/vulnerabilities/5997 •
CVSS: 5.0EPSS: 5%CPEs: 3EXPL: 1CVE-2000-0236 – Netscape Enterprise Server 3.0/3.6/3.51 - Directory Indexing
https://notcve.org/view.php?id=CVE-2000-0236
Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp-cs-dump. • https://www.exploit-db.com/exploits/19814 http://www.securityfocus.com/bid/1063 http://www.securityfocus.com/templates/archive.pike?list=1&msg=38D2173D.24E39DD0%40relaygroup.com •
CVSS: 5.0EPSS: 4%CPEs: 3EXPL: 1CVE-1999-1005 – Netscape Enterprise Server / Novell Groupwise 5.2/5.5 - 'GWWEB.EXE' Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-1999-1005
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. • https://www.exploit-db.com/exploits/19682 http://marc.info/?l=bugtraq&m=94571433731824&w=2 http://www.osvdb.org/3413 http://www.securityfocus.com/bid/879 •
CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 1CVE-1999-1130 – Netscape Enterprise Server 3.51/3.6 - JHTML View Source
https://notcve.org/view.php?id=CVE-1999-1130
Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTML files by specifying a search command using the HTML-tocrec-demo1.pat pattern file. • https://www.exploit-db.com/exploits/19443 http://marc.info/?l=bugtraq&m=93346448121208&w=2 http://marc.info/?l=ntbugtraq&m=93337389603117&w=2 http://www.securityfocus.com/bid/559 •