Intrusion Prevention

Netscape.Server.WP.Tag.Directory.List.Disclosure

Description

This indicates an attack attempt to exploit an Information Disclosure vulnerability in Netscape Enterprise Server.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. As a result, a remote attacker can gain unauthorized access to sensitive information.

Affected Products

Netscape Enterprise Server 3.6 and earlier versions

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Refer to the following website for suggested workaround.
http://www.securityfocus.com/bid/1063/solution

CVE References

CVE-2000-0236