Netware@6.5 Security Vulnerabilities and Issues — Netware@6.5 CVE List

Lucene search

NovellNetware6.5

13 matches found

CVE•added 2010/04/05 3:30 p.m.•50 views

CVE-2003-1592

Multiple buffer overflows in NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allow remote attackers to cause a denial of service (abend) via a long (1) username or (2) password.

5CVSS7.2AI score0.01446EPSS

CVE•added 2010/04/05 4:30 p.m.•48 views

CVE-2010-0625

Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.

6.5CVSS8.1AI score0.33563EPSS

CVE•added 2010/04/05 3:30 p.m.•47 views

CVE-2002-2433

NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote authenticated users to cause a denial of service (abend) via a crafted ABOR command.

4CVSS6.4AI score0.00383EPSS

CVE•added 2010/04/05 3:30 p.m.•47 views

CVE-2003-1593

NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 does not enforce domain-name login restrictions, which allows remote attackers to bypass intended access control via an FTP connection.

7.5CVSS7.1AI score0.00132EPSS

CVE•added 2010/04/05 3:30 p.m.•47 views

CVE-2003-1595

NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly perform "intruder detection," which has unspecified impact and attack vectors.

10CVSS6.9AI score0.00291EPSS

CVE•added 2010/04/05 3:30 p.m.•46 views

CVE-2007-6734

NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home server via unspecified vectors.

4CVSS6.4AI score0.00216EPSS

CVE•added 2010/04/05 3:30 p.m.•44 views

CVE-2002-2434

NWFTPD.nlm before 5.02i in the FTP server in Novell NetWare does not properly listen for data connections, which allows remote attackers to cause a denial of service (abend) via multiple FTP sessions.

5CVSS6.9AI score0.00428EPSS

CVE•added 2010/04/05 3:30 p.m.•43 views

CVE-2003-1594

NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly enforce FTPREST.TXT settings, which allows remote attackers to bypass intended access restrictions via an FTP session.

7.5CVSS7AI score0.00132EPSS

CVE•added 2010/04/05 3:30 p.m.•43 views

CVE-2003-1596

NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restrictions via an FTP session.

7.5CVSS7AI score0.00108EPSS

CVE•added 2010/04/05 3:30 p.m.•39 views

CVE-2005-4887

NWFTPD.nlm before 5.06.05 in the FTP server in Novell NetWare 6.5 SP5 allows attackers to have an unspecified impact via vectors related to passwords.

7.5CVSS6.8AI score0.00138EPSS

CVE•added 2010/04/05 3:30 p.m.•37 views

CVE-2003-1591

NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote attackers to cause a denial of service (console hang) via a large number of FTP sessions, which are not properly handled during an NLM unload.

4.3CVSS6.9AI score0.004EPSS

CVE•added 2010/01/15 6:30 p.m.•37 views

CVE-2010-0317

Novell Netware 6.5 SP8 allows remote attackers to cause a denial of service (NULL pointer dereference, memory consumption, ABEND, and crash) via a large number of malformed or AFP requests that are not properly handled by (1) the CIFS functionality in CIFS.nlm Semantic Agent (Build 163 MP) 3.27 or ...

7.8CVSS7AI score0.08963EPSS

CVE•added 2010/06/21 7:30 p.m.•34 views

CVE-2010-2351

Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.

10CVSS8.4AI score0.14485EPSS