Open Enterprise Server Security Vulnerabilities and Issues — Open Enterprise Server CVE List

Lucene search

NovellOpen Enterprise Server

3 matches found

CVE•added 2006/03/23 11:6 a.m.•45 views

CVE-2006-0997

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) permits encryption with a NULL key, which results in cleartext communication that allows remote attackers to read an SSL protected session by sniffing network traffic.

5CVSS6.6AI score0.00265EPSS

CVE•added 2006/03/23 11:6 a.m.•39 views

CVE-2006-0998

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) sometimes selects a weak cipher instead of an available stronger cipher, which makes it easier for remote attackers to sniff and decrypt an SSL protected session.

5CVSS6.7AI score0.00557EPSS

CVE•added 2006/03/23 11:6 a.m.•39 views

CVE-2006-0999

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) allows a client to force the server to use weak encryption by stating that a weak cipher is required for client compatibility, which might allow remote attackers to decrypt contents of an SSL pro...

5CVSS6.7AI score0.00335EPSS