CVE-2000-1076
First published: Mon Dec 11 2000(Updated: )
Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun Iplanet Certificate Management System | =4.2 | |
| Netscape Directory Server | =4.12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2000-1076?
The severity of CVE-2000-1076 is high due to the risk of exposing administrative privileges through the plaintext storage of passwords.
How do I fix CVE-2000-1076?
To fix CVE-2000-1076, update to a patched version of Netscape iPlanet Certificate Management System or Netscape Directory Server that addresses this vulnerability.
What versions are affected by CVE-2000-1076?
CVE-2000-1076 affects Netscape iPlanet Certificate Management System version 4.2 and Netscape Directory Server version 4.12.
Can CVE-2000-1076 be exploited remotely?
Yes, CVE-2000-1076 may allow local and possibly remote attackers to gain administrative privileges on the server.
What impact does CVE-2000-1076 have on systems?
CVE-2000-1076 can lead to unauthorized access and control of administrative functionalities on the affected servers.
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/weakness
- agent/references
- agent/tags
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- vendor/sun
- canonical/sun iplanet certificate management system
- version/sun iplanet certificate management system/4.2
- vendor/netscape
- canonical/netscape directory server
- version/netscape directory server/4.12