This script is Copyright (C) 2002-2014 Tenable Network Security, Inc.
The remote applicaiton server is affected by a buffer overflow
This host is running the Sun One/iPlanet web server 4.1 or 6.0. This
web server contains an unchecked buffer in the 'Chunked Encoding'
processing routines. By issuing a malformed request to the web server,
a potential intruder can 'POST' extraneous data and cause the web
server process to execute arbitrary code. This allows the potential
intruder to gain access to this host.
See also :
The vendor has released Sun ONE web server 4.1 service pack 11 and 6.0
service pack 4 to fix this issue.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true
Family: Web Servers
Nessus Plugin ID: 11068 (iplanet_chunked_encoding.nasl)
Bugtraq ID: 5433
CVE ID: CVE-2002-0845
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.