CyberSec.Space Logo
返回 CVE 浏览器

CVE-2001-0419

HIGH
7.5
CVSS Severity Score
EPSS Score0.0140%
EPSS Percentile8.65th
Published2001年7月2日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in shared library ndwfn4.so for iPlanet Web Server (iWS) 4.1, when used as a web listener for Oracle application server 4.0.8.2, allows remote attackers to execute arbitrary commands via a long HTTP request that is passed to the application server, such as /jsp/.

Affected Platforms (CPE)

📦
Oracle

Application Server

= 4.0.8.2

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=98692227816141&w=2
🔗 http://www.securityfocus.com/bid/2569
🔗 http://marc.info/?l=bugtraq&m=98692227816141&w=2
🔗 http://www.securityfocus.com/bid/2569

相关漏洞威胁

CVE-2020-2949510.0

DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness Analyzer. A remote una...

CVE-2000-084810.0

Buffer overflow in IBM WebSphere web application server (WAS) allows remote attackers to execute arbitrary commands via a long Hos...

CVE-2020-2949310.0

DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a SQL Injection Vulnerability in Fitness Analyzer. A remote unauthentic...

CVE-2002-164110.0

Multiple buffer overflows in Oracle Web Cache for Oracle 9i Application Server (9iAS) allow remote attackers to execute arbitrary ...