Lucene search

[email protected]CVE-2001-1233

HistoryAug 14, 2001 - 4:00 a.m.

CVE-2001-1233

2001-08-1404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

netware enterprise web server 5.1

groupwise webaccess 5.5

novell directory services

nds

cve-2001-1233

vulnerability

remote attack

user enumeration

ndsobj.nlm.

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

52.0%

JSON

Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services (NDS) enabled allows remote attackers to enumerate user names, group names and other system information by accessing ndsobj.nlm.

CPENameOperatorVersion
novell:groupwise_webaccessnovell groupwise webaccesseq5.5
novell:netwarenovell netwareeq5.1

CPE	Name	Operator	Version
novell:groupwise_webaccess	novell groupwise webaccess	eq	5.5
novell:netware	novell netware	eq	5.1

References

www.securityfocus.com/archive/1/204875

exchange.xforce.ibmcloud.com/vulnerabilities/6987

7.2 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

52.0%

JSON

Related for CVE-2001-1233

cvelist1