CVE-2000-1075

iPlanet Certificate Management System 4.2 and Directory Server 4.12 - Directory Traversal via Dot-Dot Attack

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-1075. PoCs published by CORE-SDI.

AI-analyzed exploit summary The vulnerability involves directory traversal in Netscape Directory Server via HTTP requests using '\../' sequences. It affects multiple services (Agent, End Entity, Administrator) on specific ports, allowing unauthorized access to files outside the web root.

Description

Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.

Exploits (2)

exploitdb WRITEUP VERIFIED
by CORE-SDI · textremotewindows
https://www.exploit-db.com/exploits/20325

The vulnerability involves directory traversal in Netscape Directory Server via HTTP requests using '\../' sequences. It affects multiple services (Agent, End Entity, Administrator) on specific ports, allowing unauthorized access to files outside the web root.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Netscape Directory Server
No auth needed
Prerequisites: Network access to the target server
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by CORE-SDI · textremotewindows
https://www.exploit-db.com/exploits/20324

The exploit describes a directory traversal vulnerability in iPlanet Certificate Management System (CMS) via HTTP requests using '\../' sequences. It affects multiple services on different ports, allowing access to files outside the web root.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: iPlanet Certificate Management System (CMS)
No auth needed
Prerequisites: Network access to the target system · Affected iPlanet CMS service running
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-10/0383.html
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1839
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5421
Various Sources x_refsource_confirm
http://www.iplanet.com/downloads/patches/0122.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/4086
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/486

Scores

EPSS 0.0602
EPSS Percentile 92.4%

Details

Status published
Products (2)
netscape/directory_server 4.12
sun/iplanet_certificate_management_system 4.2
Published Dec 11, 2000
Tracked Since Feb 18, 2026