Vulnerability Details CVE-2001-0746
Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.356
EPSS Ranking 96.8%
CVSS Severity
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
- http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
- http://www.securityfocus.com/bid/2732
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6554
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
- http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
- http://www.securityfocus.com/bid/2732
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6554
Products affected by CVE-2001-0746
-
cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp3
-
cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp4
-
cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp5
-
cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp6
-
cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp7