Lucene search

K
cveMitreCVE-2010-0625
HistoryApr 05, 2010 - 4:30 p.m.

CVE-2010-0625

2010-04-0516:30:00
CWE-119
mitre
web.nvd.nist.gov
36
cve-2010-0625
buffer overflow
nwftpd.nlm
novell netware
remote authentication
dos
arbitrary code execution

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

8.1

Confidence

High

EPSS

0.314

Percentile

97.1%

Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.

Affected configurations

Nvd
Node
novellnetware_ftp_serverMatch5.01i
OR
novellnetware_ftp_serverMatch5.01o
OR
novellnetware_ftp_serverMatch5.01w
OR
novellnetware_ftp_serverMatch5.01y
OR
novellnetware_ftp_serverMatch5.02b
OR
novellnetware_ftp_serverMatch5.02i
OR
novellnetware_ftp_serverMatch5.02r
OR
novellnetware_ftp_serverMatch5.02y
OR
novellnetware_ftp_serverMatch5.03b
OR
novellnetware_ftp_serverMatch5.03l
OR
novellnetware_ftp_serverMatch5.04.5
OR
novellnetware_ftp_serverMatch5.04.8
OR
novellnetware_ftp_serverMatch5.04.20
OR
novellnetware_ftp_serverMatch5.04.25
OR
novellnetware_ftp_serverMatch5.05
OR
novellnetware_ftp_serverMatch5.05.04
OR
novellnetware_ftp_serverMatch5.06.04
OR
novellnetware_ftp_serverMatch5.06.05
OR
novellnetware_ftp_serverMatch5.07
OR
novellnetware_ftp_serverMatch5.07.02
AND
novellnetwareMatch5.1
OR
novellnetwareMatch5.1sp2a
OR
novellnetwareMatch5.1sp3
OR
novellnetwareMatch5.1sp4
OR
novellnetwareMatch5.1sp6
OR
novellnetwareMatch6.0
OR
novellnetwareMatch6.0sp1
OR
novellnetwareMatch6.0sp2
OR
novellnetwareMatch6.0sp3
OR
novellnetwareMatch6.5
OR
novellnetwareMatch6.5sp1
OR
novellnetwareMatch6.5sp1.1a
OR
novellnetwareMatch6.5sp1.1b
OR
novellnetwareMatch6.5sp2
OR
novellnetwareMatch6.5sp3
OR
novellnetwareMatch6.5sp4
OR
novellnetwareMatch6.5sp5
OR
novellnetwareMatch6.5sp6
OR
novellnetwareMatch6.5sp7
OR
novellnetwareMatch6.5sp8
VendorProductVersionCPE
novellnetware_ftp_server5.01icpe:2.3:a:novell:netware_ftp_server:5.01i:*:*:*:*:*:*:*
novellnetware_ftp_server5.01ocpe:2.3:a:novell:netware_ftp_server:5.01o:*:*:*:*:*:*:*
novellnetware_ftp_server5.01wcpe:2.3:a:novell:netware_ftp_server:5.01w:*:*:*:*:*:*:*
novellnetware_ftp_server5.01ycpe:2.3:a:novell:netware_ftp_server:5.01y:*:*:*:*:*:*:*
novellnetware_ftp_server5.02bcpe:2.3:a:novell:netware_ftp_server:5.02b:*:*:*:*:*:*:*
novellnetware_ftp_server5.02icpe:2.3:a:novell:netware_ftp_server:5.02i:*:*:*:*:*:*:*
novellnetware_ftp_server5.02rcpe:2.3:a:novell:netware_ftp_server:5.02r:*:*:*:*:*:*:*
novellnetware_ftp_server5.02ycpe:2.3:a:novell:netware_ftp_server:5.02y:*:*:*:*:*:*:*
novellnetware_ftp_server5.03bcpe:2.3:a:novell:netware_ftp_server:5.03b:*:*:*:*:*:*:*
novellnetware_ftp_server5.03lcpe:2.3:a:novell:netware_ftp_server:5.03l:*:*:*:*:*:*:*
Rows per page:
1-10 of 401

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

8.1

Confidence

High

EPSS

0.314

Percentile

97.1%