20 matches found
EUVD-2002-0238
Malware in sbrugna...
EUVD-2004-1456
Malware in sbrugna...
Citrix Receiver Support for NDS (Novell Directory Structure) Authentication in a Citrix Environment
This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information. This article provides information onCitrix Receiver Support for NDS Novell Directory Structure...
CVE-2016-9168
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking...
Novell Edirectory 8.8 SP5 Cross Site Scripting
Application: Novell Edirectory 8.8 SP5 Platforms: Windows 2003 Server Exploitation: XSS Date: 2009-09-23 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details and bug 3 The Code =============== 1 Introduction =============== Novell Directory Services is a hierarchica...
Microsoft Netware Client Service Memory Corruption (MS06-066; CVE-2006-4688)
Client Services for NetWare CSNW provides a Windows workstation with access to NetWare file, print, and directory services. This gives users the ability to store and retrieve documents from NetWare file servers, print to NetWare print queues, and log on to Novell Directory Services NDS. By...
CVE-2004-1460
CVE-2004-1460 affects Cisco Secure Access Control Server (ACS) 3.2(3) and earlier. When configured with an anonymous bind in Novell Directory Services (NDS), and authenticating NDS users with NDS, remote attackers can gain unauthorized access to AAA clients by using a blank password. The NVD note...
CVE-2004-1460
Cisco Secure Access Control Server ACS 3.23 and earlier, when configured with an anonymous bind in Novell Directory Services NDS and authenticating NDS users with NDS, allows remote attackers to gain unauthorized access to AAA clients via a blank password...
CVE-2004-1460
Cisco Secure Access Control Server ACS 3.23 and earlier, when configured with an anonymous bind in Novell Directory Services NDS and authenticating NDS users with NDS, allows remote attackers to gain unauthorized access to AAA clients via a blank password...
Cisco Secure ACS multiple bugs
TCP requests flood DoS, LEAP DoS, anonymous access if Novell Directory Service with anonymous account enabled is used, weak protection against connection hijacking...
CVE-2002-0241
NDSAuth.DLL in Cisco Secure Authentication Control Server ACS 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services NDS, which could allow those users to authenticate to the server...
CVE-2002-0241
The vulnerability CVE-2002-0241 affects Cisco Secure Authentication Control Server (ACS) 3.0.1 via the NDSAuth.DLL, which fails to validate the Expired/Disabled state of NetWare/NDS users. As a result, such accounts could authenticate to the ACS despite being expired or disabled. The issue is cau...
CVE-2002-0241
NDSAuth.DLL in Cisco Secure Authentication Control Server ACS 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services NDS, which could allow those users to authenticate to the server...
CVE-2001-1233
Netware Enterprise Web Server 5.1 with GroupWise WebAccess 5.5 and NDS enabled is affected. The vulnerability allows remote attackers to enumerate usernames, group names and other system information by accessing ndsobj.nlm, due to exposure of directory information. CVSS v2.0 base score is 5.0 (AV...
CVE-2001-1233
Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services NDS enabled allows remote attackers to enumerate user names, group names and other system information by accessing ndsobj.nlm...
Security Advisory: Cisco Secure Access Control Server Novell Directory Service Expired/Disabled User Authentication Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Cisco Security Advisory: Cisco Secure Access Control Server Novell Directory Service Expired/Disabled User Authentication Vulnerability ========================================================================== Revision 1.0 For Public Release 2002 February 07...
Cisco Secure Access Control Server Novell Directory Service Expired/Disabled User Authentication Vulnerability
...
CVE-2001-1233
Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services NDS enabled allows remote attackers to enumerate user names, group names and other system information by accessing ndsobj.nlm...
Проблемы с авторизацией в Novell Directory
Уязвиомсть протокола авторизации позволяет скомпрометировать клиента при возможности перехвата траффика man-in-the-middle...
Bypassing Inherited Rights Filters in Novell Directory Services.
FOGHORN SECURITY ADVISORY issued September 7, 2000 http://www.foghornsecurity.com/advisories/20000907 Bypassing Inherited Rights Filters in Novell Directory Services. SUMMARY A design weakness in NDS as shipped with Novell v5.0 and later can allow certain users to bypass IRF's, and gain escalatio...