CVE-2001-1580

Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string...

CVE-2001-1580

CVE-2001-1580 : A directory traversal vulnerability exists in ScriptEase viewcode.jse for NetWare 5.1 before 5.1 SP3, enabling remote attackers to read arbitrary files via ".." sequences in the query string. The vulnerability stems from insufficient input sanitization in the NetWare Web Server’s ...

CVE-2002-2083

The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen...

CVE-2002-2083

CVE-2002-2083 : The vulnerability affects the Novell Netware client running on Windows 95. Local users can bypass login and open arbitrary files via the "What is this?" help feature accessible from the Netware login screen. The connected documents do not provide details on affected versions beyon...

CVE-2005-0773

Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECTCLIENTAUTH request with authentication method type 3 Windows credentials and a long password argume...

CVE-2005-2080

CVE-2005-2080 affects VERITAS Backup Exec RAWS: vulnerable versions include Backup Exec 9.0–10.0 for Windows and 9.0.4019–9.1.307 for NetWare. The root cause is that remote attackers can gain privileges by copying the server handle. Impact and remediation details are limited to the cited records;...

CVE-2005-0772

Affected software/versions: VERITAS Backup Exec 9.0–10.0 for Windows Server and 9.0.4019–9.1.307 for NetWare. Component and cause: Remote Agent NDMLSRVR.DLL; a null pointer dereference triggered by parsing a crafted packet or a request with non-0 Error Status value. Impact: remote denial of servi...

PT-2005-1801 · Veritas · Veritas Backup Exec

Name of the Vulnerable Software and Affected Versions: VERITAS Backup Exec versions 9.0 through 10.0 for Windows Servers VERITAS Backup Exec versions 9.0.4019 through 9.1.307 for Netware Description: The issue allows remote attackers to cause a denial of service, resulting in a Remote Agent crash...

CVE-2002-1754

Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial of service crash by using ping, traceroute, or a similar utility to force the client to resolve a large hostname...

CVE-2002-1754

CVE-2002-1754: Buffer overflow in Novell NetWare Client 4.80–4.83 can crash the client when resolving a very large hostname, triggered by local user actions (e.g., ping/traceroute). Affected: NetWare Client 4.80–4.83. Root cause: buffer overflow in hostname resolution. Impact: local denial of ser...

CVE-2002-1772

CVE-2002-1772 affects Novell NetWare 5.0–5.1. Local users could obtain Domain Admin rights by logging into an NDS account (not in NT domain) with domain access rights and running the command “net use” on an NDS_ADM account, which allows entry with a null password. The NVD entry assigns a CVSS2 ba...

CVE-2002-1772

Novell Netware 5.0 through 5.1 may allow local users to gain "Domain Admin" rights by logging into a Novell Directory Services NDS account, and executing "net use" on an NDSADM account that is not in the NT domain but has domain access rights, which allows the user to enter a null password...

CVE-2004-2104

Technical details for CVE-2004-2104 are not provided in the connected documents; public specifics (affected products, exploit details) are not available here. Monitor for updates.

CVE-2004-2104

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to 1 snoop.jsp, 2 SnoopServlet, 3 env.bas, or 4 lcgitest.nlm...

CVE-2004-2106

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to 1 /com/, 2 /com/novell/, 3 /com/novell/webaccess, or 4 /ns-icons/...

CVE-2004-2105

CVE-2004-2105 affects the webacc servlet in Novell NetWare Enterprise Web Server 5.1 and 6.0. An attacker can read arbitrary .htt files by providing a full pathname in the error parameter, indicating a path traversal flaw in error handling. The vulnerability potentially exposes sensitive files (p...

CVE-2004-2106

CVE-2004-2106 involves the Novell NetWare Enterprise Web Server (versions 5.1 and 6.0). The vulnerability allows remote attackers to list directories by making direct requests to /com/, /com/novell/, /com/novell/webaccess, or /ns-icons/. The available connected documents confirm the affected prod...

CVE-2004-2105

The webacc servlet in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to read arbitrary .htt files via a full pathname in the error parameter...

CVE-2004-2103

The connected records provide concrete details for CVE-2004-2103 family: Novell GroupWise 6.5 WebAccess (webacc servlet) and related Novell NetWare/WebAccess components are vulnerable to cross-site scripting (XSS) via the User.Id parameter (and URL fields in STYLE elements), with exploitation dem...

CVE-2004-2103

Cross-site scripting XSS vulnerability in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to process arbitrary script or HTML as other users via 1 a malformed request for a Perl program with script in the filename, 2 the User.id parameter to the webacc servlet, 3 the...