Vulnerabilities > CVE-2002-2434 - Denial-Of-Service vulnerability in Netware

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

novell

NVD

Published: 2010-04-05

Updated: 2010-06-08

Summary

NWFTPD.nlm before 5.02i in the FTP server in Novell NetWare does not properly listen for data connections, which allows remote attackers to cause a denial of service (abend) via multiple FTP sessions.

Vulnerable Configurations

Part	Description	Count
Application	Novell Novell Netware FTP Server 5.01I Novell Netware FTP Server 5.01O Novell Netware FTP Server 5.01W Novell Netware FTP Server 5.01Y Novell Netware FTP Server -	5
OS	Novell Novell Netware 5.1 Novell Netware 6.0 Novell Netware 6.5	3

References

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1