806 matches found
Novell NetWare Web Server sewse.nlm (viewcode.jse) Traversal Arbitrary File Access
The installed version of Nombas ScriptEase Web Server Edition for NetWare on the remote host fails to sanitize input to the 'sewse.nlm' page and associated 'viewcode.jse' script before using it to display the source code of a file. By passing in a specially crafted URL argument, an attacker can...
NetWare-Enterprise-Web-Server/5.1/6.0 Multiple Vulnerabilities
Software: Novell Netware Vendor: http://www.Novell.com Versions: NetWare-Enterprise-Web-Server/5.1/6.0 Platforms: Windows Bug: Multiple Vulnerabilities Risk: Medium Exploitation: Remote with browser Date: 6 Jan 2004 Author: Rafel Ivgi, The-Insider e-mail: [email protected] web:...
Novell Netware Enterprise Web Server 5.16.0 - snoop.jsp Information Disclosure
Novell Netware Enterprise Web Server 5.16.0 - snoop.jsp Information Disclosure source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose...
Novell Netware Enterprise Web Server 5.16.0 - Multiple Cross-Site Scripting Vulnerabilities
Novell Netware Enterprise Web Server 5.16.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attack...
Novell Netware Enterprise Web Server 5.1/6.0 SnoopServlet - Information Disclosure
source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose sensitive information, and load potentially malicious files on a vulnerable...
Novell Netware Enterprise Web Server 5.16.0 SnoopServlet - Information Disclosure
Novell Netware Enterprise Web Server 5.16.0 SnoopServlet - Information Disclosure source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclos...
novellNetware.txt
Software: Novell Netware Vendor: http://www.Novell.com Versions: NetWare-Enterprise-Web-Server/5.1/6.0 Platforms: Windows Bug: Multiple Vulnerabilities Risk: Medium Exploitation: Remote with browser Date: 6 Jan 2004 Author: Rafel Ivgi, The-Insider e-mail: [email protected] web:...
Novell Netware Enterprise Web Server 5.1/6.0 - snoop.jsp Information Disclosure
source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose sensitive information, and load potentially malicious files on a vulnerable...
Novell Netware Enterprise Web Server 5.1/6.0 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose sensitive information, and load potentially malicious files on a vulnerable...
Novell Netware Enterprise Web Server 5.1/6.0 - env.bas Information Disclosure
source: https://www.securityfocus.com/bid/9479/info Multiple vulnerabilities have been identified in Novell Netware Enterprise Web Server that may allow an attacker to carry out cross-site scripting attacks, disclose sensitive information, and load potentially malicious files on a vulnerable...
CVE-2003-0976
NFS Server XNFS.NLM for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS should deny the host...
CVE-2003-0976
CVE-2003-0976 concerns the NFS Server (XNFS.NLM) component of Novell NetWare 6.5. The issue arises because exports enforcement can be bypassed when using hostname aliases from sys:\etc\hosts, allowing potentially authorized hosts to mount file systems that XNFS should deny. Affected product: NFS ...
CVE-2003-0976
NFS Server XNFS.NLM for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS should deny the host...
CVE-2003-1150
Buffer overflow in the portmapper service PMAP.NLM in Novell NetWare 6 SP3 and ZenWorks for Desktops 3.2 SP2 through 4.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors...
Novell NetWare Web Server CGI2PERL.NLM PERL Handler Remote Overflow
The remote web server crashes when it receives a too long URL for the Perl handler. It might be possible to make it execute arbitrary code through this flaw. C Tenable Network Security, Inc. Vulnerable: NetWare 5.1 SP6, NetWare 6 include"compat.inc"; if description scriptid11827;...
CVE-2003-0562
Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service ABEND via a long input string...
CVE-2003-0562
Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service ABEND via a long input string...
CVE-2003-0562
NetWare NetWare Enterprise Web Server 5.1/6.0 is vulnerable via the CGI2PERL.NLM PERL handler. A buffer overflow can be triggered by a long URL to /perl/, crashing the server (ABEND) and potentially allowing arbitrary code execution. Public sources describe vulnerable products as NetWare 5.1 SP6 ...
Netware Web Server buffer overflow
Buffer overflow on oversized request to perl handler...
NOVL-2003-2966549 - Enterprise Web Server PERL Buffer Overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 For Immediate Disclosure ============================== Summary ============================== Security Alert: NOVL-2003-2966549 Title: Enterprise Web Server PERL Handler Buffer Overflow Date: 23-Jul-2003 Revision: Original Product Name: Netware...