One Web Server Security Vulnerabilities and Issues — One Web Server CVE List

Lucene search

SunOne Web Server

5 matches found

CVE•added 2009/06/01 10:30 p.m.•89 views

CVE-2004-2763

The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cross-site tracing (XST) attacks in applications that are vulnerable to cross-site scripting.

5.8CVSS5.9AI score0.00408EPSS

CVE•added 2002/10/04 4:0 a.m.•54 views

CVE-2002-1042

Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter.

5CVSS6.8AI score0.08581EPSS

CVE•added 2010/02/25 7:30 p.m.•40 views

CVE-2003-1589

Unspecified vulnerability in Sun ONE (aka iPlanet) Web Server 4.1 before SP13 and 6.0 before SP6 on Windows allows attackers to cause a denial of service (daemon crash) via unknown vectors.

5CVSS6.7AI score0.00361EPSS

CVE•added 2010/02/25 7:30 p.m.•37 views

CVE-2003-1590

Unspecified vulnerability in Sun ONE (aka iPlanet) Web Server 6.0 SP3 through SP5 on Windows allows remote attackers to cause a denial of service (daemon crash) via unknown vectors.

5CVSS6.8AI score0.00436EPSS

CVE•added 2005/03/12 5:0 a.m.•32 views

CVE-2003-1126

Unknown vulnerability in SunOne/iPlanet Web Server SP3 through SP5 on Windows platforms allows remote attackers to cause a denial of service.

5CVSS7AI score0.01076EPSS