cbcvebase.
CVE-2002-1654
published 2002-12-31

CVE-2002-1654: iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the…

PriorityP427high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.62%
83.6th percentile
iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.

Affected

11 ranges
VendorProductVersion rangeFixed in
iplanetiplanet_web_server
iplanetiplanet_web_server
iplanetiplanet_web_server
netscapeenterprise_server
netscapeenterprise_server
netscapeenterprise_server
netscapeenterprise_server
netscapeenterprise_server
netscapeenterprise_server
netscapeenterprise_server
netscapeenterprise_server
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.