CyberSec.Space Logo
返回 CVE 浏览器

CVE-2001-0746

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0570%
EPSS Percentile2.15th
Published2001年10月18日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.

Affected Platforms (CPE)

📦
Iplanet

Iplanet Web Server

= 4.1_sp3
📦
Iplanet

Iplanet Web Server

= 4.1_sp4
📦
Iplanet

Iplanet Web Server

= 4.1_sp5
📦
Iplanet

Iplanet Web Server

= 4.1_sp6
📦
Iplanet

Iplanet Web Server

= 4.1_sp7

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
🔗 http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
🔗 http://www.securityfocus.com/bid/2732
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6554
🔗 http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
🔗 http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
🔗 http://www.securityfocus.com/bid/2732
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6554

相关漏洞威胁

CVE-2001-043110.0

Vulnerability in iPlanet Web Server Enterprise Edition 4.x.

CVE-2000-107710.0

Buffer overflow in the SHTML logging functionality of iPlanet Web Server 4.x allows remote attackers to execute arbitrary commands...

CVE-2001-04197.5

Buffer overflow in shared library ndwfn4.so for iPlanet Web Server (iWS) 4.1, when used as a web listener for Oracle application s...

CVE-2020-93157.5

** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs i...