Lucene search

[email protected]CVE-2002-1417

HistoryApr 11, 2003 - 4:00 a.m.

CVE-2002-1417

2003-04-1104:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

novell

netware

small business suite

directory traversal

vulnerability

nsn

netbasic

remote attackers

arbitrary files

url

security

cve-2002-1417

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.559 Medium

EPSS

Percentile

97.7%

JSON

Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL containing a “…%5c” sequence (modified dot-dot), which is mapped to the directory separator.

CPENameOperatorVersion
novell:small_business_suitenovell small business suiteeq6.0
novell:small_business_suitenovell small business suiteeq5.1
novell:netwarenovell netwareeq5.1
novell:netwarenovell netwareeq6.0

CPE	Name	Operator	Version
novell:small_business_suite	novell small business suite	eq	6.0
novell:small_business_suite	novell small business suite	eq	5.1
novell:netware	novell netware	eq	5.1
novell:netware	novell netware	eq	6.0

References

archives.neohapsis.com/archives/bugtraq/2002-08/0199.html

support.novell.com/servlet/tidfinder/2963297

www.iss.net/security_center/static/9910.php

www.securityfocus.com/bid/5523

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.559 Medium

EPSS

Percentile

97.7%

JSON

Related for CVE-2002-1417

openvas2 nessus1 cvelist1