iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote malicious users to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netscape enterprise server 3.2 |
||
netscape enterprise server 3.3 |
||
iplanet iplanet web server enterprise_4.1 |
||
netscape enterprise server 2.0 |
||
netscape enterprise server 3.6 |
||
netscape enterprise server 3.0 |
||
netscape enterprise server 3.1 |
||
iplanet iplanet web server 6.0 |
||
iplanet iplanet web server enterprise_4.0 |
||
netscape enterprise server 3.4 |
||
netscape enterprise server 3.5 |