Memory Disclosure and Denial of Service Vulnerability in iPlanet Web Server Enterprise Edition 4.1 and Earlier

Memory Disclosure and Denial of Service Vulnerability in iPlanet Web Server Enterprise Edition 4.1 and Earlier

CVE-2001-0327 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

iPlanet Web Server Enterprise Edition 4.1 and earlier allows remote attackers to retrieve sensitive data from memory allocation pools, or cause a denial of service, via a URL-encoded Host: header in the HTTP request, which reveals memory in the Location: header that is returned by the server.

Learn more about our Web App Pen Testing.