Back to search
CVE-2002-1654
Published: Mar 28, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.kb.cert.org/vuls/id/AAMN-567NFX
x_refsource_CONFIRM
3831
vdb-entry
x_refsource_BID
netscape-enterprise-http-brute-force(7845)
vdb-entry
x_refsource_XF
VU#985347
third-party-advisory
x_refsource_CERT-VN
20020109 Netscape publishing wp-force-auth command
mailing-list
x_refsource_VULNWATCH
http://www.procheckup.com/vulnerabilities/pr0105.html
x_refsource_MISC
http://www.securiteam.com/securitynews/5IP0G0060Q.html
x_refsource_MISC
1003157
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now