Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026
CVE-2002-1654
CVE-2002-1654
Description
iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.
Affected products
11cpe:2.3:a:iplanet:iplanet_web_server:6.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:iplanet:iplanet_web_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.0:*:*:*:*:*:*:*
- cpe:2.3:a:iplanet:iplanet_web_server:enterprise_4.1:*:*:*:*:*:*:*
cpe:2.3:a:netscape:enterprise_server:2.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:netscape:enterprise_server:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:netscape:enterprise_server:3.6:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.kb.cert.org/vuls/id/985347nvdPatchUS Government Resource
- lists.virus.org/vulnwatch-0201/msg00008.htmlnvdExploitPatch
- securitytracker.com/idnvdExploitPatch
- www.securiteam.com/securitynews/5IP0G0060Q.htmlnvdExploitPatch
- www.securityfocus.com/bid/3831nvdExploitPatch
- www.kb.cert.org/vuls/id/AAMN-567NFXnvd
- www.procheckup.com/vulnerabilities/pr0105.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/7845nvd
News mentions
0No linked articles in our index yet.