Vulnerabilities > CVE-2005-1976 - Unspecified vulnerability in Novell Netmail 3.5.2

CVSS 1.7 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

novell

NVD

Published: 2005-12-31

Updated: 2008-09-05

Summary

Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files.

Vulnerable Configurations

Part	Description	Count
Application	Novell Novell Netmail 3.5.2	3

References

http://secunia.com/advisories/15763
http://securitytracker.com/id?1014251
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098022.htm
http://www.osvdb.org/17456
http://www.securityfocus.com/bid/14005