CVE-1999-0361

NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging...

CVE-1999-0929

Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests...

CVE-1999-0361

CVE-1999-0361 affects NetWare deployments running LaserFiche (Novell NetWare version of LaserFiche). The vulnerable component is the storage of usernames and passwords in unencrypted form, and the vulnerability allows administrative changes to occur without logging. Public documentation consisten...

CVE-1999-0774

The CVE-1999-0774 issue affects the Mars NetWare Emulation (NWE, mars_nwe) package, with a buffer overflow vulnerability triggered by long directory names. This is evidenced by multiple sources (NVD, Red Hat CVE entry, CVE list) describing a buffer overflow in mars_nwe. The Red Hat entry corrobor...

CVE-1999-0774

Buffer overflows in Mars NetWare Emulation NWE, marsnwe package via long directory names...

CVE-1999-1320

Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing...

CVE-1999-1382

NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program...

CVE-1999-1528

ProSoft Netware Client 5.12 on Macintosh MacOS 9 does not automatically log a user out of the NDS tree when the user logs off the system, which allows other users of the same system access to the unprotected NDS session...

CVE-1999-0774

Buffer overflows in Mars NetWare Emulation NWE, marsnwe package via long directory names...

Martin Stover Mars NWE 0.99 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/617/info There are several buffer overflows in the setuid root components of the Mars Netware Emulator package. They allow for a local root compromise through the overflowing of buffers without bounds checking. It is to be assumed that all versions pri...

Martin Stover Mars NWE 0.99 - Local Buffer Overflow

Martin Stover Mars NWE 0.99 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/617/info There are several buffer overflows in the setuid root components of the Mars Netware Emulator package. They allow for a local root compromise through the overflowing of buffers without bounds...

compaq.insight.manager.server.txt

Date: Wed, 26 May 1999 16:41:36 +0100 From: [email protected] To: [email protected] Subject: Infosec.19990526.compaq-im.a Infosec Security Vulnerability Report No: Infosec.19990526.compaq-im.a ===================================== Vulnerability Summary --------------------- Problem:...

rconsole.passwd.netware.txt

Date: Tue, 6 Oct 1998 02:36:11 -0500 From: Simple Nomad To: [email protected] Subject: NMRC Advisory - "Decryption" of the RCONSOLE Password Jeez I swear we'd be this productive all the time of fully funded. Anyway this makes up for the last one's lameness. -SN Nomad Mobile Research Centre A D...

compulink-laserfiche-passwd.txt

Date: Thu, 28 Jan 1999 10:21:55 -0800 From: Darren Rogers To: [email protected] Subject: Compulink LaserFiche Client/Server - unencrypted passwords Background: LaserFiche is a popular client-server imaging system, which according to their website, 'is the trusted imaging system used by Fortune...

netware.4.x.tts.DoS.txt

Date: Wed, 12 May 1999 14:18:59 -0500 From: Simple Nomad To: [email protected] Subject: DoS with Netware 4.x's TTS Nomad Mobile Research Centre A D V I S O R Y www.nmrc.org Simple Nomad [email protected] 12May1998 Platform : Netware 4.x Application : NDS Severity : High Synopsis -------- It is...

CVE-1999-0929

Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests...

PT-1999-1471 · Novell · Novell-Http-Server +1

Name of the Vulnerable Software and Affected Versions: Novell NetWare with Novell-HTTP-Server or YAWN web servers affected versions not specified Description: The issue allows remote attackers to conduct a denial of service via a large number of HTTP GET requests. Recommendations: At the moment,...

Novell Netware 4.1/4.11 - SP5B Remote.NLM Weak Encryption

source: https://www.securityfocus.com/bid/482/info The encrypted passwords for Remote.NLM are remotely accessible to anyone with the ability to view SYS:System\LDRemote.NCF. The password encryption algorithm for Remote.NLM has been broken and can be decrypted with pencil and paper. The password...

CVE-1999-0361

NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging...

PT-1999-1049 · Novell · Laserfiche

Name of the Vulnerable Software and Affected Versions: Novell NetWare version of LaserFiche affected versions not specified Description: The issue concerns the storage of usernames and passwords in an unencrypted manner. Additionally, it allows administrative changes to be made without proper...