ID CVE-2002-0845
Summary Buffer overflow in Sun ONE / iPlanet Web Server 4.1 and 6.0 allows remote attackers to execute arbitrary code via an HTTP request using chunked transfer encoding.
References
Vulnerable Configurations
  • cpe:2.3:a:iplanet:iplanet_web_server:4.1:*:*:*:*:*:*:*
    cpe:2.3:a:iplanet:iplanet_web_server:4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:iplanet:iplanet_web_server:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:iplanet:iplanet_web_server:6.0:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 18-10-2016 - 02:22)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 5433
bugtraq 20020808 EEYE: Sun(TM) ONE / iPlanet Web Server 4.1 and 6.0 Remote Buffer Overflow
confirm http://www.sun.com/service/support/software/iplanet/alerts/transferencodingalert-23july2002.html
xf iplanet-chunked-encoding-bo(9799)
Last major update 18-10-2016 - 02:22
Published 12-08-2002 - 04:00
Last modified 18-10-2016 - 02:22
Back to Top