GCVE - cpe:2.3:a:netscape:iplanet_ical:2.1:patch2:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:netscape:iplanet_ical:2.1:patch2:*:*:*:*:*:*

part: a version: 2.1 update: patch2

Vendor	Netscape (`2c519990-8f9a-5ac3-8d7c-5897cb1e036f`)
Product	Iplanet Ical (`bb047b1d-b05e-5f3b-8028-e839c4828167`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2000-1074`	vulnerable	2026-06-03 14:26:00.439243	Details available csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.418Z Open on db.gcve.eu Reference links http://www.osvdb.org/7209 https://exchange.xforce.ibmcloud.com/vulnerabilities/5757 http://www.securityfocus.com/bid/1769 http://www.atstake.com/research/advisories/2000/a100900-1.txt	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1073`	vulnerable	2026-06-03 14:26:00.438964	Details available csstart program in iCal 2.1 Patch 2 searches for the cshttpd program in the current working directory, which allows local users to gain root privileges by creating a Trojan Horse cshttpd program in a directory and calling csstart from that directory. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.419Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/5757 http://www.securityfocus.com/bid/1769 http://www.osvdb.org/7210 http://www.atstake.com/research/advisories/2000/a100900-1.txt	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1072`	vulnerable	2026-06-03 14:26:00.438677	Details available iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.999Z Open on db.gcve.eu Reference links http://www.atstake.com/research/advisories/2000/a100900-1.txt http://www.securityfocus.com/bid/1768 https://exchange.xforce.ibmcloud.com/vulnerabilities/5756 http://www.osvdb.org/7212	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-1071`	vulnerable	2026-06-03 14:26:00.438316	Details available The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges. Published: 2001-01-22T05:00:00.000Z Updated: 2024-08-08T05:45:36.424Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/5752 http://www.atstake.com/research/advisories/2000/a100900-1.txt http://www.securityfocus.com/bid/1767 http://www.osvdb.org/7213	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Iplanet Ical

PURL mappings

Vulnerability references

Contribute