12 matches found
EUVD-2014-0626
Malware in sbrugna...
CVE-2014-0609
Unspecified vulnerability in Novell Open Enterprise Server OES 11 SP1 before Scheduled Maintenance Update 9415 and 11 SP2 before Scheduled Maintenance Update 9413 for Linux has unknown impact and attack vectors...
CVE-2014-0598
Directory traversal vulnerability in iPrint in Novell Open Enterprise Server OES 11 SP1 before Maintenance Update 9151 on Linux has unspecified impact and remote attack vectors...
CVE-2014-0598
The CVE-2014-0598 entry concerns a directory traversal vulnerability in iPrint for Novell Open Enterprise Server (OES) 11 SP1 prior to Maintenance Update 9151 on Linux. The root cause is a directory traversal flaw in iPrint that could allow an attacker to access unintended files. Affected product...
CVE-2014-0599
Cross-site scripting XSS vulnerability in iPrint in Novell Open Enterprise Server OES 11 SP1 before Maintenance Update 9151 on Linux allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-0599
CVE-2014-0599 describes an XSS vulnerability in iPrint for Novell Open Enterprise Server (OES) 11 SP1 prior to Maintenance Update 9151 on Linux. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CVSS v2 base score is 4.3 (Medium) with network access...
Open redirect
/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server OES 11 Linux SP2 does not properly manage a certain array, which allows local users to obtain the S permission in opportunistic circumstances by leveraging the granting of the F permission by an administrator...
CVE-2014-0595
CVE-2014-0595 affects /opt/novell/ncl/bin/nwrights in Novell Client for Linux used with Novell Open Enterprise Server 11 Linux SP2. The flaw stems from improper management of an internal array, enabling local users to obtain S-level (Supervisor) rights in opportunistic circumstances when an admin...
CVE-2014-0595
/opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server OES 11 Linux SP2 does not properly manage a certain array, which allows local users to obtain the S permission in opportunistic circumstances by leveraging the granting of the F permission by an administrator...
CVE-2013-3707
The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 OES 2 Linux, and OES 11 Linux Gold and SP1, does not make the intended SSLfree and SSLshutdown calls for the close of a TCP connection, which allows remote attackers to cause a denial of...
CVE-2013-3707
The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in Novell Open Enterprise Server 2 OES 2 Linux, and OES 11 Linux Gold and SP1, does not make the intended SSLfree and SSLshutdown calls for the close of a TCP connection, which allows remote attackers to cause a denial of...
CVE-2013-3707
CVE-2013-3707 affects the HTTPSTK service in the Novell Open Enterprise Server (OES) 2 Linux and OES 11 Linux Gold/SP1 releases via the novell-nrm package. The root cause is that the HTTPSTK component does not perform the intended SSL_free and SSL_shutdown on TCP connection close, enabling a remo...