ID CVE-2002-1042
Summary Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter.
References
Vulnerable Configurations
  • Netscape Netscape Enterprise Server 3.6
    cpe:2.3:a:netscape:enterprise_server:3.6
  • Sun iPlanet Web Server 4.1
    cpe:2.3:a:sun:iplanet_web_server:4.1
  • Sun iPlanet Web Server 4.1 SP1
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp1
  • Sun iPlanet Web Server 4.1 SP1 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp1:enterprise
  • Sun iPlanet Web Server 4.1 SP10
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp10
  • Sun iPlanet Web Server 4.1 SP10 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp10:enterprise
  • Sun iPlanet Web Server 4.1 SP2
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp2
  • Sun iPlanet Web Server 4.1 SP2 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp2:enterprise
  • Sun iPlanet Web Server 4.1 SP3
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp3
  • Sun iPlanet Web Server 4.1 SP3 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp3:enterprise
  • Sun iPlanet Web Server 4.1 SP4
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp4
  • Sun iPlanet Web Server 4.1 SP4 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp4:enterprise
  • Sun iPlanet Web Server 4.1 SP5
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp5
  • Sun iPlanet Web Server 4.1 SP5 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp5:enterprise
  • Sun iPlanet Web Server 4.1 SP6
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp6
  • Sun iPlanet Web Server 4.1 SP6 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp6:enterprise
  • Sun iPlanet Web Server 4.1 SP7
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp7
  • Sun iPlanet Web Server 4.1 SP7 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp7:enterprise
  • Sun iPlanet Web Server 4.1 SP8
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp8
  • Sun iPlanet Web Server 4.1 SP8 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp8:enterprise
  • Sun iPlanet Web Server 4.1 SP9
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp9
  • Sun iPlanet Web Server 4.1 SP9 Enterprise
    cpe:2.3:a:sun:iplanet_web_server:4.1:sp9:enterprise
  • Sun ONE Application Server 6.0
    cpe:2.3:a:sun:one_application_server:6.0
  • cpe:2.3:a:sun:one_application_server:6.0:sp1
    cpe:2.3:a:sun:one_application_server:6.0:sp1
  • cpe:2.3:a:sun:one_application_server:6.0:sp2
    cpe:2.3:a:sun:one_application_server:6.0:sp2
  • cpe:2.3:a:sun:one_web_server:6.0:sp3
    cpe:2.3:a:sun:one_web_server:6.0:sp3
CVSS
Base: 5.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
exploit-db via4
description iPlanet Web Server 4.1 Search Component File Disclosure Vulnerability. CVE-2002-1042. Remote exploits for multiple platform
id EDB-ID:21603
last seen 2016-02-02
modified 2002-07-09
published 2002-07-09
reporter Qualys Corporation
source https://www.exploit-db.com/download/21603/
title iPlanet Web Server 4.1 - Search Component File Disclosure Vulnerability
nessus via4
NASL family Web Servers
NASL id IPLANET_SEARCH.NASL
description An attacker may be able to read arbitrary files on the remote web server, using the 'search' CGI that comes with iPlanet.
last seen 2019-02-21
modified 2018-11-15
plugin id 11043
published 2002-07-10
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=11043
title iPlanet Search Engine search CGI Arbitrary File Access
refmap via4
bid 5191
bugtraq 20020709 iPlanet Remote File Viewing
xf iplanet-search-view-files(9517)
Last major update 05-09-2008 - 16:29
Published 04-10-2002 - 00:00
Back to Top