Vulnerabilities > CVE-2000-0237 - Unspecified vulnerability in Netscape Enterprise Server 3.5/3.6
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Nessus
| NASL family | Web Servers |
| NASL id | DDI_DIRECTORY_SCANNER.NASL |
| description | This plugin attempts to determine the presence of various common directories on the remote web server. By sending a request for a directory, the web server response code indicates if it is a valid directory or not. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 11032 |
| published | 2002-06-26 |
| reporter | This script is Copyright (C) 2002-2013 Digital Defense Inc. |
| source | https://www.tenable.com/plugins/nessus/11032 |
| title | Web Server Directory Enumeration |