Published: 20/10/2000 Updated: 10/10/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote malicious users to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server.

Vulnerable Product	Search on Vulmon	Subscribe to Product
network associates net tools pki server 1.0hotfix1
network associates net tools pki server 1.0hotfix2
network associates net tools pki server 1.0

source: wwwsecurityfocuscom/bid/1537/info Certain versions of Network Associates Inc's Net Tools PKI (Public Key Infrastructure) server ship with a vulnerability which allows remote attackers to read any file in the system which the PKI server resides The problem lies within the webserver component of the PKI server (strongexe) which o ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html http://www.securityfocus.com/bid/1537 http://download.nai.com/products/licensed/pgp/hf3pki10.txt http://www.osvdb.org/1489 https://exchange.xforce.ibmcloud.com/vulnerabilities/5066 https://nvd.nist.gov https://www.exploit-db.com/exploits/20135/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-0739

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect