CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-0739

Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.046

EPSS Ranking 88.8%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html
http://download.nai.com/products/licensed/pgp/hf3pki10.txt
http://www.osvdb.org/1489
http://www.securityfocus.com/bid/1537
https://exchange.xforce.ibmcloud.com/vulnerabilities/5066
http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html
http://download.nai.com/products/licensed/pgp/hf3pki10.txt
http://www.osvdb.org/1489
http://www.securityfocus.com/bid/1537
https://exchange.xforce.ibmcloud.com/vulnerabilities/5066

Products affected by CVE-2000-0739

Network Associates » Net Tools Pki Server » Version: 1.0

cpe:2.3:a:network_associates:net_tools_pki_server:1.0
Network Associates » Net Tools Pki Server » Version: 1.0hotfix1

cpe:2.3:a:network_associates:net_tools_pki_server:1.0hotfix1
Network Associates » Net Tools Pki Server » Version: 1.0hotfix2

cpe:2.3:a:network_associates:net_tools_pki_server:1.0hotfix2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0739

Products

Pricing

Contact Us