CVSS: 9.8EPSS: 1%CPEs: 11EXPL: 4CVE-2002-1654
https://notcve.org/view.php?id=CVE-2002-1654
31 Dec 2002 — iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection. • http://lists.virus.org/vulnwatch-0201/msg00008.html •
CVSS: 7.5EPSS: 1%CPEs: 9EXPL: 2CVE-2002-1655
https://notcve.org/view.php?id=CVE-2002-1655
31 Dec 2002 — The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request. • http://cert.uni-stuttgart.de/archive/vulnwatch/2002/01/msg00007.html •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2001-0327
https://notcve.org/view.php?id=CVE-2001-0327
02 Jul 2001 — iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive data from memory allocation pools, or cause a denial of service, via a URL-encoded Host: header in the HTTP request, which reveals memory in the Location: header that is returned by the server. • http://www.atstake.com/research/advisories/2001/a041601-1.txt •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1368
https://notcve.org/view.php?id=CVE-2001-1368
11 Jun 2001 — Vulnerability in iPlanet Web Server 4 included in Virtualvault Operating System (VVOS) 4.0 running HP-UX 11.04 could allow attackers to corrupt data. • http://archives.neohapsis.com/archives/hp/2001-q2/0059.html •