Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0746

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2001-0746
Last Modified 05 Sep 2008 04:24:49
Published 18 Oct 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0746

Summary

Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.

Vulnerable Systems

Application

  • Iplanet Web Server 4.1 Sp3

  • Iplanet Web Server 4.1 Sp4

  • Iplanet Web Server 4.1 Sp5

  • Iplanet Web Server 4.1 Sp6

  • Iplanet Web Server 4.1 Sp7


References

XF - netscape-enterprise-uri-bo(6554)

BID - 2732

CONFIRM - http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html

BUGTRAQ - 20010515 iPlanet - Netscape Enterprise Web Publisher Buffer Overflow


Last Updated: 27 May 2016 10:36:23