CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1654

iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 81.7%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2002-1654

Iplanet » Iplanet Web Server » Version: 6.0

cpe:2.3:a:iplanet:iplanet_web_server:6.0
Iplanet » Iplanet Web Server » Version: enterprise_4.0

cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.0
Iplanet » Iplanet Web Server » Version: enterprise_4.1

cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.1
Netscape » Enterprise Server » Version: 2.0

cpe:2.3:a:netscape:enterprise_server:2.0
Netscape » Enterprise Server » Version: 3.0

cpe:2.3:a:netscape:enterprise_server:3.0
Netscape » Enterprise Server » Version: 3.1

cpe:2.3:a:netscape:enterprise_server:3.1
Netscape » Enterprise Server » Version: 3.2

cpe:2.3:a:netscape:enterprise_server:3.2
Netscape » Enterprise Server » Version: 3.3

cpe:2.3:a:netscape:enterprise_server:3.3
Netscape » Enterprise Server » Version: 3.4

cpe:2.3:a:netscape:enterprise_server:3.4
Netscape » Enterprise Server » Version: 3.5

cpe:2.3:a:netscape:enterprise_server:3.5
Netscape » Enterprise Server » Version: 3.6

cpe:2.3:a:netscape:enterprise_server:3.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1654

Products

Pricing

Contact Us