CVE-2002-1654
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-1654
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Netscape企业Web服务器蛮力授权攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
iPlanet Web服务器企业版和 Netscape企业版服务器4.0和4.1版本存在漏洞。远程攻击者可以借助wp-force-auth Web Publisher命令执行HTTP基本认证,该漏洞提供不同的攻击向量并可能更容易在无探测时执行暴力密码猜测。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2002-1654
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2002-1654
Please Login to view more intelligence information
- http://www.securiteam.com/securitynews/5IP0G0060Q.htmlx_refsource_MISC
- http://www.procheckup.com/vulnerabilities/pr0105.htmlx_refsource_MISC
- http://www.kb.cert.org/vuls/id/AAMN-567NFXx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2002-1654
Same Patch Batch · n/a · 2005-03-28 · 26 CVEs total
| CVE-2002-1647 | Slash Slashcode密码泄露漏洞 | |
| CVE-2005-0469 | 多个Telnet客户端slc_add_reply() 缓冲区溢出漏洞 | |
| CVE-2005-0468 | Telnet客户端env_opt_add() 缓冲区溢出漏洞 | |
| CVE-2004-1773 | GNU Sharutils多个缓冲区溢出漏洞 | |
| CVE-2004-1772 | GNU Sharutils shar命令行解析缓冲区溢出漏洞 | |
| CVE-2002-1656 | X-News不安全用户数据库权限漏洞 | |
| CVE-2002-1655 | Netscape Enterprise Server Web Publisher拒绝服务攻击漏洞 | |
| CVE-2002-1653 | Cryptcat加密连接弱点 | |
| CVE-2002-1652 | CGIEmail远程缓冲区溢出漏洞 | |
| CVE-2002-1651 | Verity Search97错误页面跨站脚本漏洞 | |
| CVE-2002-1650 | SquirrelMail拼写检查器漏洞 | |
| CVE-2002-1649 | SquirrelMail对恶意HTML格式邮件处理的漏洞 | |
| CVE-2002-1648 | SquirrelMail对恶意HTML格式邮件处理的漏洞 | |
| CVE-2002-1634 | Netware下的Netscape Enterprise Web服务器信息泄露漏洞 | |
| CVE-2002-1646 | SSH Communications SSH AllowedAuthentications配置存在漏洞 | |
| CVE-2002-1645 | SSH Communications Secure Shell Windows客户端URLCatcher缓冲区溢出漏洞 | |
| CVE-2002-1644 | SSH Communications SSH Server权限提升漏洞 | |
| CVE-2002-1643 | Real Networks Helix Universal Server RTSP transport字段远程缓冲区溢出漏洞 | |
| CVE-2002-1642 | PostgreSQL VACUUM命令数据丢失漏洞 | |
| CVE-2002-1641 | Oracle Web Cache远程缓冲区溢出漏洞 |
Showing top 20 of 26 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM
V. Comments for CVE-2002-1654
No comments yet