CVE-2002-0845
https://notcve.org/view.php?id=CVE-2002-0845
Buffer overflow in Sun ONE / iPlanet Web Server 4.1 and 6.0 allows remote attackers to execute arbitrary code via an HTTP request using chunked transfer encoding. • http://marc.info/?l=bugtraq&m=102890933623192&w=2 http://www.iss.net/security_center/static/9799.php http://www.securityfocus.com/bid/5433 http://www.sun.com/service/support/software/iplanet/alerts/transferencodingalert-23july2002.html •
CVE-2002-0686
https://notcve.org/view.php?id=CVE-2002-0686
Buffer overflow in the search component for iPlanet Web Server (iWS) 4.1 and Sun ONE Web Server 6.0 allows remote attackers to execute arbitrary code via a long argument to the NS-rel-doc-name parameter. Desbordamiento de búfer en la búsqueda de componentes para iPlanet Web Server (iWS) 4.1 y 6.0 permite a atacantes remotos la ejecución arbitraria de código mediante un argumento largo en el parámetro NS-rel-doc-name. • http://marc.info/?l=bugtraq&m=102622220416889&w=2 http://www.iss.net/security_center/static/9506.php http://www.kb.cert.org/vuls/id/612843 http://www.nextgenss.com/vna/sun-iws.txt http://www.securityfocus.com/bid/4851 •
CVE-2001-0747
https://notcve.org/view.php?id=CVE-2001-0747
Buffer overflow in iPlanet Web Server (iWS) Enterprise Edition 4.1, service packs 3 through 7, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long method name in an HTTP request. • http://archives.neohapsis.com/archives/bugtraq/2001-05/0203.html http://www.iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html •
CVE-2001-0606
https://notcve.org/view.php?id=CVE-2001-0606
Vulnerability in iPlanet Web Server 4.X in HP-UX 11.04 (VVOS) with VirtualVault A.04.00 allows a remote attacker to create a denial of service via the HTTPS service. • http://archives.neohapsis.com/archives/hp/2001-q1/0041.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6110 •
CVE-2001-0327
https://notcve.org/view.php?id=CVE-2001-0327
iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive data from memory allocation pools, or cause a denial of service, via a URL-encoded Host: header in the HTTP request, which reveals memory in the Location: header that is returned by the server. • http://www.atstake.com/research/advisories/2001/a041601-1.txt http://www.iplanet.com/products/iplanet_web_enterprise/iwsalert4.16.html http://www.kb.cert.org/vuls/id/276767 http://www.osvdb.org/5704 •