Cluestick Advisory #001

Cluestick Advisory 001 June 27, the year of our Lord 2002 Surreal "Unauthenticated remote hyper-annoying denial of service with a side of server reboot, using IManage. Netware 6.0 and NW6 SP1." OK, I may possibly ramble a bit, but is that any reason to SHUN a body? It's been 30 to 45 days, and I'...

Format string bug in Netware ftpd

Format string bug in username...

cqure.net.20020521.netware_nwftpd_fmtstr

cqure.net Security Vulnerability Report No: cqure.net.20020521.netwarenwftpdfmtstr ============================================ Vulnerability Summary --------------------- Problem: The Netware FTP server has a DOS vulnerability. Threat: An attacker could cause the FTP server to ABEND resulting in...

Novell NetWare default installation contains sample files that disclose sensitive server information

Overview Novell NetWare 5.1 is a network management operating system that enables access to files, printers, directories, email, databases, and other network interfaces, as well as providing a web interface. There is an insecure default configuration that places several sample applications in the...

Novell NetWare ncp Service NDS Object Enumeration

This host is a Novell NetWare eDirectory server, and has browse rights on the PUBLIC object. It is possible to enumerate all NDS objects, including users, with crafted queries. An attacker can use this to gain information about this host. This script was written by Forrest Rae See the Nessus...

Multiple bugs in Novell Netware and utilities

No description provided...

cqure.net.20020412.netware_client.a

cqure.net Security Vulnerability Report No: cqure.net.20020412.netwareclient.a ======================================== Vulnerability Summary --------------------- Problem: Multiple buffer overflow conditions exist in the Novell Netware client for Windows. Threat: An attacker could crash any...

cqure.net.20020412.netware_sdmr.a

cqure.net Security Vulnerability Report No: cqure.net.20020412.netwaresdmr.a ======================================== Vulnerability Summary --------------------- Problem: The IPX compatibility issue Posted to BugTraq on July 11, 2000 by Dimuthu Parussalla applies to Netware 6.0 SP 1 as well...

cqure.net.20020408.netware_nwftpd.a

cqure.net Security Vulnerability Report No: cqure.net.20020408.netwarenwftpd.a ======================================== Vulnerability Summary --------------------- Problem: The Netware FTP server has a DOS vulnerability. Threat: An attacker could cause the server cpu to spike at 100 cpu hogging t...

CVE-2001-1233

Netware Enterprise Web Server 5.1 with GroupWise WebAccess 5.5 and NDS enabled is affected. The vulnerability allows remote attackers to enumerate usernames, group names and other system information by accessing ndsobj.nlm, due to exposure of directory information. CVSS v2.0 base score is 5.0 (AV...

CVE-2001-1233

Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services NDS enabled allows remote attackers to enumerate user names, group names and other system information by accessing ndsobj.nlm...

iXsecurity.20020313.nw6remotemanager.a

iXsecurity Security Vulnerability Report No: iXsecurity.20020313.nw6remotemanager.a ========================================== Vulnerability Summary --------------------- Problem: The Netware 6 Remote Manager, which is a web-based interface for managing the server, has a buffer overflow condition...

Buffer overflow in Novell Netware 6 Remote Manager

Buffer overflow in HTTPSTK.NLM and SERVER.NLM modules...

CVE-1999-1382

NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program...

CVE-1999-1320

Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing...

CVE-2000-0600

Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL...

CVE-2001-0442

The CVE-2001-0442 entry concerns a buffer overflow in the Mercury MTA POP3 server for NetWare 1.48 and earlier. The vulnerability arises from handling a long APOP command, enabling remote attackers to cause a denial of service and potentially execute arbitrary code. The available connected source...

CVE-1999-1215

CVE-1999-1215 affects LOGIN.EXE in Novell NetWare 4.0/4.01, where credentials are temporarily written to disk, enabling local privilege elevation. Root cause: credentials written to disk by LOGIN.EXE. Impact per CVSS: partial confidentiality, integrity, and availability with local access; exploit...

CVE-1999-1320

Technical details about CVE-1999-1320 are not publicly provided in the supplied documents. No affected products, root cause, or fixes are described here. Monitor for updates.

CVE-1999-1382

CVE-1999-1382 describes a local privilege escalation in NetWare NFS mode 1 and 2. The issue arises when NetWare-NFS implements the Unix Read Only flag by changing a file’s ownership to root, which can be exploited by a local user who creates a setuid program and marks it as Read Only; NetWare-NFS...