Vulnerability Name:
CCN-13891
Published:
2003-12-02
Updated:
2003-12-02
Summary:
Sun ONE Web Server, formerly known as iPlanet Web Server, is vulnerable to a denial of service. Sun ONE Web Server, running on Microsoft Windows platforms, could allow a remote attacker to crash the Web server.
CVSS v3 Severity:
5.3 Medium
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Low
CVSS v2 Severity:
5.0 Medium
(CCN CVSS v2 Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
Vulnerability Consequences:
Denial of Service
References:
Source: CCN
Type: Sun Alert ID: 57423
Sun ONE Web Server Denial-of-Service Vulnerability
Source: CCN
Type: BID-9146
Sun ONE/iPlanet Web Server Unspecified Denial of Service Vulnerability
Source: XF
Type: UNKNOWN
sunone-web-dos(13891)
Vulnerable Configuration:
Configuration CCN 1
:
cpe:/a:sun:one_web_server:6.0:*:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:*:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp1:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp10:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp11:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp12:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp2:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp3:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp4:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp5:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp6:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp7:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp8:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:4.1:sp9:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:6.0:sp4:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:6.0:sp5:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:6.0:sp3:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:6.0:sp2:*:*:*:*:*:*
OR
cpe:/a:sun:one_web_server:6.0:sp1:*:*:*:*:*:*
Denotes that component is vulnerable
BACK
sun
one web server 6.0
sun
one web server 4.1
sun
one web server 4.1 sp1
sun
one web server 4.1 sp10
sun
one web server 4.1 sp11
sun
one web server 4.1 sp12
sun
one web server 4.1 sp2
sun
one web server 4.1 sp3
sun
one web server 4.1 sp4
sun
one web server 4.1 sp5
sun
one web server 4.1 sp6
sun
one web server 4.1 sp7
sun
one web server 4.1 sp8
sun
one web server 4.1 sp9
sun
one web server 6.0 sp4
sun
one web server 6.0 sp5
sun
one web server 6.0 sp3
sun
one web server 6.0 sp2
sun
one web server 6.0 sp1