Filtered by vendor Novell
Subscribe
Total
671 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2000-0669 | 1 Novell | 1 Netware | 2024-02-28 | 5.0 MEDIUM | N/A |
Novell NetWare 5.0 allows remote attackers to cause a denial of service by flooding port 40193 with random data. | |||||
CVE-1999-0175 | 1 Novell | 1 Web Server | 2024-02-28 | 5.0 MEDIUM | N/A |
The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server. | |||||
CVE-2003-0635 | 1 Novell | 1 Ichain | 2024-02-28 | 5.0 MEDIUM | N/A |
Unknown vulnerability or vulnerabilities in Novell iChain 2.2 before Support Pack 1, with unknown impact, possibly related to unauthorized access to (1) NCPIP.NLM and (2) JSTCP.NLM. | |||||
CVE-2000-0257 | 1 Novell | 1 Netware | 2024-02-28 | 7.5 HIGH | N/A |
Buffer overflow in the NetWare remote web administration utility allows remote attackers to cause a denial of service or execute commands via a long URL. | |||||
CVE-2001-1580 | 2 Nombas, Novell | 2 Scriptease Webserver, Netware | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string. | |||||
CVE-2002-1754 | 1 Novell | 1 Netware Client | 2024-02-28 | 2.1 LOW | N/A |
Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial of service (crash) by using ping, traceroute, or a similar utility to force the client to resolve a large hostname. | |||||
CVE-2002-0779 | 1 Novell | 1 Bordermanager | 2024-02-28 | 5.0 MEDIUM | N/A |
FTP proxy server for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service (network connectivity loss) via a connection to port 21 with a large amount of random data. | |||||
CVE-1999-1382 | 1 Novell | 1 Netware | 2024-02-28 | 7.2 HIGH | N/A |
NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program. | |||||
CVE-1999-1006 | 1 Novell | 1 Groupwise | 2024-02-28 | 5.0 MEDIUM | N/A |
Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter. | |||||
CVE-2002-1552 | 1 Novell | 1 Edirectory | 2024-02-28 | 7.5 HIGH | N/A |
Novell eDirectory (eDir) 8.6.2 and Netware 5.1 eDir 85.x allows users with expired passwords to gain inappropriate permissions when logging in from Remote Manager. | |||||
CVE-2005-1247 | 1 Novell | 1 Nsure Audit | 2024-02-28 | 5.0 MEDIUM | N/A |
webadmin.exe in Novell Nsure Audit 1.0.1 allows remote attackers to cause a denial of service via malformed ASN.1 packets in corrupt client certificates to an SSL server, as demonstrated using an exploit for the OpenSSL ASN.1 parsing vulnerability. | |||||
CVE-2002-1283 | 1 Novell | 1 Emframe | 2024-02-28 | 5.0 MEDIUM | N/A |
Buffer overflow in Novell iManager (eMFrame) before 1.5 allows remote attackers to cause a denial of service via an authentication request with a long Distinguished Name (DN) attribute. | |||||
CVE-1999-1320 | 1 Novell | 1 Netware | 2024-02-28 | 4.6 MEDIUM | N/A |
Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing. | |||||
CVE-2002-1417 | 1 Novell | 2 Netware, Small Business Suite | 2024-02-28 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL containing a "..%5c" sequence (modified dot-dot), which is mapped to the directory separator. | |||||
CVE-2002-1413 | 1 Novell | 1 Netware | 2024-02-28 | 7.5 HIGH | N/A |
RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection. | |||||
CVE-2001-1232 | 1 Novell | 1 Groupwise | 2024-02-28 | 5.0 MEDIUM | N/A |
GroupWise WebAccess 5.5 with directory indexing enabled allows a remote attacker to view arbitrary directory contents via an HTTP request with a lowercase "get". | |||||
CVE-1999-0929 | 1 Novell | 2 Http Server, Netware | 2024-02-28 | 5.0 MEDIUM | N/A |
Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests. | |||||
CVE-2002-0341 | 1 Novell | 1 Groupwise | 2024-02-28 | 5.0 MEDIUM | N/A |
GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote attackers to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter. | |||||
CVE-2002-0530 | 1 Novell | 1 Web Search | 2024-02-28 | 5.1 MEDIUM | N/A |
Cross-site scripting vulnerability in Novell Web Search 2.0.1 allows remote attackers to execute arbitrary script as other Web Search users via the search parameter. | |||||
CVE-1999-1086 | 1 Novell | 1 Netware | 2024-02-28 | 10.0 HIGH | N/A |
Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls. |