CVE-2001-0327

2001-07-02T04:00:00
ID CVE-2001-0327
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:23:00

Description

iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive data from memory allocation pools, or cause a denial of service, via a URL-encoded Host: header in the HTTP request, which reveals memory in the Location: header that is returned by the server.