Iplanet Web Server@4.1 Security Vulnerabilities and Issues — Iplanet Web Server@4.1 CVE List

Lucene search

IplanetIplanet Web Server4.1

5 matches found

CVE•added 2003/04/02 5:0 a.m.•41 views

CVE-2002-0845

Buffer overflow in Sun ONE / iPlanet Web Server 4.1 and 6.0 allows remote attackers to execute arbitrary code via an HTTP request using chunked transfer encoding.

7.5CVSS8AI score0.03398EPSS

CVE•added 2001/10/18 4:0 a.m.•40 views

CVE-2001-0747

Buffer overflow in iPlanet Web Server (iWS) Enterprise Edition 4.1, service packs 3 through 7, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long method name in an HTTP request.

7.5CVSS8.4AI score0.01345EPSS

CVE•added 2002/11/29 5:0 a.m.•34 views

CVE-2002-1315

Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote attackers to execute web script or HTML as the iPlanet administrator by injecting the desired script into error logs, and possibly escalating privileges by using the XSS vulnerability i...

6.8CVSS5.5AI score0.02076EPSS

CVE•added 2002/11/29 5:0 a.m.•33 views

CVE-2002-1316

importInfo in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows the web administrator to execute arbitrary commands via shell metacharacters in the dir parameter, and possibly allows remote attackers to exploit this vulnerability via a separate XSS issue (CVE-2002-1315).

6.8CVSS6.9AI score0.02076EPSS

CVE•added 2002/07/23 4:0 a.m.•28 views

CVE-2002-0686

Buffer overflow in the search component for iPlanet Web Server (iWS) 4.1 and Sun ONE Web Server 6.0 allows remote attackers to execute arbitrary code via a long argument to the NS-rel-doc-name parameter.

7.5CVSS8AI score0.04681EPSS