CVE-2001-0746

Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.

Published: Oct 18, 2001
Updated: Apr 13, 2023
CVE: CVE-2001-0746
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
iplanet / iplanet_web_server	4.1_sp4	4.1_sp4.x
iplanet / iplanet_web_server	4.1_sp5	4.1_sp5.x
iplanet / iplanet_web_server	4.1_sp7	4.1_sp7.x
iplanet / iplanet_web_server	4.1_sp6	4.1_sp6.x
iplanet / iplanet_web_server	4.1_sp3	4.1_sp3.x

http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.html
http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.html
http://www.securityfocus.com/bid/2732
https://exchange.xforce.ibmcloud.com/vulnerabilities/6554

Vulnerability Database

CVE-2001-0746

Deep Security Visibility Without the Complexity