4 results (0.002 seconds)

CVSS: 5.0EPSS: 1%CPEs: 9EXPL: 2

The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request. • http://cert.uni-stuttgart.de/archive/vulnwatch/2002/01/msg00007.html http://www.kb.cert.org/vuls/id/191763 http://www.kb.cert.org/vuls/id/AAMN-567N48 http://www.procheckup.com/security_info/vuln_pr0104.html http://www.securityfocus.com/bid/3826 https://exchange.xforce.ibmcloud.com/vulnerabilities/7842 •

CVSS: 7.5EPSS: 4%CPEs: 11EXPL: 4

iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection. • http://lists.virus.org/vulnwatch-0201/msg00008.html http://securitytracker.com/id?1003157 http://www.kb.cert.org/vuls/id/985347 http://www.kb.cert.org/vuls/id/AAMN-567NFX http://www.procheckup.com/vulnerabilities/pr0105.html http://www.securiteam.com/securitynews/5IP0G0060Q.html http://www.securityfocus.com/bid/3831 https://exchange.xforce.ibmcloud.com/vulnerabilities/7845 •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive data from memory allocation pools, or cause a denial of service, via a URL-encoded Host: header in the HTTP request, which reveals memory in the Location: header that is returned by the server. • http://www.atstake.com/research/advisories/2001/a041601-1.txt http://www.iplanet.com/products/iplanet_web_enterprise/iwsalert4.16.html http://www.kb.cert.org/vuls/id/276767 http://www.osvdb.org/5704 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Vulnerability in iPlanet Web Server 4 included in Virtualvault Operating System (VVOS) 4.0 running HP-UX 11.04 could allow attackers to corrupt data. • http://archives.neohapsis.com/archives/hp/2001-q2/0059.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6697 •