Vulnerability Description
Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a long URI with (1) GETPROPERTIES, (2) GETATTRIBUTENAMES, or other methods.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iplanet | Iplanet Web Server | 4.1_sp3 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.htmlPatchVendor Advisory
- http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/2732ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6554
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0132.htmlPatchVendor Advisory
- http://iplanet.com/products/iplanet_web_enterprise/iwsalert5.11.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/2732ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6554
FAQ
What is CVE-2001-0746?
CVE-2001-0746 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in Web Publisher in iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a request for a l...
How severe is CVE-2001-0746?
CVE-2001-0746 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0746?
Check the references section above for vendor advisories and patch information. Affected products include: Iplanet Iplanet Web Server.