ID CVE-2002-1655
Summary The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request.
References
Vulnerable Configurations
  • cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.0
    cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.0
  • cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.1
    cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.1
  • Netscape Netscape Enterprise Server 3.0
    cpe:2.3:a:netscape:enterprise_server:3.0
  • Netscape Netscape Enterprise Server 3.1
    cpe:2.3:a:netscape:enterprise_server:3.1
  • Netscape Netscape Enterprise Server 3.2
    cpe:2.3:a:netscape:enterprise_server:3.2
  • Netscape Netscape Enterprise Server 3.3
    cpe:2.3:a:netscape:enterprise_server:3.3
  • Netscape Netscape Enterprise Server 3.4
    cpe:2.3:a:netscape:enterprise_server:3.4
  • Netscape Netscape Enterprise Server 3.5
    cpe:2.3:a:netscape:enterprise_server:3.5
  • Netscape Netscape Enterprise Server 3.6
    cpe:2.3:a:netscape:enterprise_server:3.6
CVSS
Base: 5.0 (as of 17-05-2005 - 17:02)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
refmap via4
bid 3826
cert-vn VU#191763
confirm http://www.kb.cert.org/vuls/id/AAMN-567N48
misc http://www.procheckup.com/security_info/vuln_pr0104.html
vulnwatch 20020109 Netscape ?wp-html-rend denial of service attack
xf netscape-enterprise-invalid-command-dos(7842)
Last major update 05-09-2008 - 16:31
Published 31-12-2002 - 00:00
Last modified 10-07-2017 - 21:29
Back to Top