CyberSec.Space Logo
Back to CVE Browser

CVE-2001-0746

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0570%
EPSS Percentile2.15th
PublishedOct 18, 2001
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.

Affected Platforms (CPE)

πŸ“¦
Iplanet

Iplanet Web Server

= 4.1_sp3
πŸ“¦
Iplanet

Iplanet Web Server

= 4.1_sp4
πŸ“¦
Iplanet

Iplanet Web Server

= 4.1_sp5
πŸ“¦
Iplanet

Iplanet Web Server

= 4.1_sp6
πŸ“¦
Iplanet

Iplanet Web Server

= 4.1_sp7

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
πŸ”— http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
πŸ”— http://www.securityfocus.com/bid/2732
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/6554
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
πŸ”— http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
πŸ”— http://www.securityfocus.com/bid/2732
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/6554

Related Vulnerabilities

CVE-2001-043110.0

Vulnerability in iPlanet Web Server Enterprise Edition 4.x.

CVE-2000-107710.0

Buffer overflow in the SHTML logging functionality of iPlanet Web Server 4.x allows remote attackers to execute arbitrary commands...

CVE-2001-04197.5

Buffer overflow in shared library ndwfn4.so for iPlanet Web Server (iWS) 4.1, when used as a web listener for Oracle application s...

CVE-2020-93157.5

** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs i...