CVE-2003-1578

Severity

43%

Complexity

86%

Confidentiality

48%

Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to hide HTTP requests from the log-preview functionality by accompanying the requests with crafted DNS responses specifying a domain name beginning with a "format=" substring, related to an "Inverse Lookup Log Corruption (ILLC)" issue.

Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, when DNS resolution is enabled for client IP addresses, allows remote attackers to hide HTTP requests from the log-preview functionality by accompanying the requests with crafted DNS responses specifying a domain name beginning with a "format=" substring, related to an "Inverse Lookup Log Corruption (ILLC)" issue.

CVSS 2.0 Base Score 4.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:N/I:P/A:N).

Overview

First reported 15 years ago

2010-02-05 22:30:00

Last updated 7 years ago

2017-08-17 01:29:00

Affected Software

Sun ONE Web Server 4.1

4.1

Sun ONE Web Server 4.1 SP1

4.1

Sun ONE Web Server 4.1 SP10

4.1

Sun ONE Web Server 4.1 SP11

4.1

Sun ONE Web Server 4.1 SP2

4.1

Sun ONE Web Server 4.1 SP3

4.1

Sun ONE Web Server 4.1 SP4

4.1

Sun ONE Web Server 4.1 SP5

4.1

Sun ONE Web Server 4.1 SP6

4.1

Sun ONE Web Server 4.1 SP7

4.1

Sun ONE Web Server 4.1 SP8

4.1

Sun ONE Web Server 4.1 SP9

4.1

References

201453

Patch, Vendor Advisory

20030304 Log corruption on multiple webservers, log analyzers,...

Exploit

7012

Patch

iplanet-logpreview-security-bypass(56633)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.