Lucene search

MitreCVE-1999-1086

HistorySep 12, 2001 - 4:00 a.m.

CVE-1999-1086

2001-09-1204:00:00

mitre

web.nvd.nist.gov

novell 5

ipx

mac address spoofing

ncp calls

administrator privileges

remote attacks

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.002

Percentile

61.5%

JSON

Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls.

Affected configurations

Nvd

Node

novellnetwareRange≤5.0

novellnetwareMatch4.1

novellnetwareMatch4.11sp5b

VendorProductVersionCPE
novellnetware*cpe:2.3:o:novell:netware:*:*:*:*:*:*:*:*
novellnetware4.1cpe:2.3:o:novell:netware:4.1:*:*:*:*:*:*:*
novellnetware4.11cpe:2.3:o:novell:netware:4.11:sp5b:*:*:*:*:*:*

Vendor	Product	Version	CPE
novell	netware	*	cpe:2.3:o:novell:netware::::::::
novell	netware	4.1	cpe:2.3:o:novell:netware:4.1:::::::*
novell	netware	4.11	cpe:2.3:o:novell:netware:4.11:sp5b::::::

References

marc.info/?l=bugtraq&m=93214475111651&w=2

www.securityfocus.com/bid/528

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.002

Percentile

61.5%

JSON

Related for CVE-1999-1086