Lucene search

[email protected]CVE-2003-1579

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2003-1579

2022-10-0316:15:42

CWE-189

[email protected]

web.nvd.nist.gov

cve-2003-1579

sun one

iplanet

web server 6

windows

dns resolution

ip address

logging format

remote attackers

spoofing

crafted dns responses

numerical top-level domains

illc

inverse lookup log corruption

vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.9%

JSON

Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which allows remote attackers to spoof IP addresses via crafted DNS responses containing numerical top-level domains, as demonstrated by a forged 123.123.123.123 domain name, related to an “Inverse Lookup Log Corruption (ILLC)” issue.

Affected configurations

NVD

Node

sunone_web_serverMatch6.0

AND

microsoftwindows

CPENameOperatorVersion
sun:one_web_serversun one web servereq6.0

CPE	Name	Operator	Version
sun:one_web_server	sun one web server	eq	6.0

References

www.securityfocus.com/archive/1/313867

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.9%

JSON

Related for CVE-2003-1579

nvd1 cvelist1