Lucene search

MitreCVE-2001-0747

HistoryOct 18, 2001 - 4:00 a.m.

CVE-2001-0747

2001-10-1804:00:00

mitre

web.nvd.nist.gov

cve-2001-0747

iplanet web server

buffer overflow

http request

nvd

denial of service

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

High

EPSS

0.009

Percentile

83.1%

JSON

Buffer overflow in iPlanet Web Server (iWS) Enterprise Edition 4.1, service packs 3 through 7, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long method name in an HTTP request.

Affected configurations

Nvd

Node

iplanetiplanet_web_serverMatch4.1

VendorProductVersionCPE
iplanetiplanet_web_server4.1cpe:2.3:a:iplanet:iplanet_web_server:4.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
iplanet	iplanet_web_server	4.1	cpe:2.3:a:iplanet:iplanet_web_server:4.1:::::::*

References

archives.neohapsis.com/archives/bugtraq/2001-05/0203.html

www.iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

High

EPSS

0.009

Percentile

83.1%

JSON

Related for CVE-2001-0747