CVE-2001-0250

Description

The Web Publishing feature in Netscape Enterprise Server 4.x and earlier allows remote attackers to list arbitrary directories under the web server root via the INDEX command.

Affected products

• netscape / enterprise_server3.0 – 3.0
• netscape / enterprise_server4.0 – 4.0

References

• MISChttp://archives.neohapsis.com/archives/bugtraq/2001-01/0396.html
• MISChttp://www.securityfocus.com/bid/2285
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5997