Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0236Enterprise Server vulnerability

4 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
3.6%
top 12.17%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Netscape Enterprise Server
Timeline
PublishedMar 17
Latest updateApr 30

Description

Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp-cs-dump.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDnetscape/enterprise_server3.0, 3.5.1, 3.6+2

🔴Vulnerability Details

2
GHSA
GHSA-629g-7h9q-r9c8: Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-2022-04-30
CVEList
CVE-2000-0236: Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-2000-07-12

💥Exploits & PoCs

1
Exploit-DB
Netscape Enterprise Server 3.0/3.6/3.51 - Directory Indexing2000-03-17
CVE-2000-0236 — Enterprise Server vulnerability | cvebase