Updated: October 08, 2002
Affected
No statement is currently available from the vendor regarding this vulnerability.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has been informed that the iPlanet alliance has been dissolved and that Sun and Netscape now have independent products called Sun ONE Server and Netscape Enterprise Server respectively. iPlanet Enterprise Servers are being maintained by Sun Microsystems, and patches for iPlanet products should be available fom them.
Notified: August 23, 2002 Updated: December 09, 2002
Affected
Netscape Enterprise Server (NES) versions 6.0 and above are not affected by this vulnerability. Users of NES 6.0 or above do not need to take action to protect their systems from this problem.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
Notified: August 28, 2002 Updated: March 27, 2003
Affected
The iPlanet Web Server Administration Server versions 4.1 SP11 and earlier and the Sun ONE Web Server Administration Server versions 6.0 SP1 and earlier are vulnerable to this issue. The issue is addressed in the iPlanet Web Server 4.1 Service Pack 12. It is also addressed in the Sun ONE Web Server 6.0 Service Pack 2 and later, which is available for download from the following location: http://wwws.sun.com/software/download/inter_ecom.html A Sun Alert with resolution details and workaround information is available from: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/49475
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.