Vulnerabilities > Novell > Access Manager > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-06-18 | CVE-2010-0284 | Path Traversal vulnerability in Novell Access Manager 3.1 Directory traversal vulnerability in the getEntry method in the PortalModuleInstallManager component in a servlet in nps.jar in the Administration Console (aka Access Management Console) in Novell Access Manager 3.1 before 3.1.2-281 on Windows allows remote attackers to create arbitrary files with any contents, and consequently execute arbitrary code, via a .. | 10.0 |
2007-03-07 | CVE-2007-1309 | Permissions, Privileges, and Access Controls vulnerability in Novell Access Manager 3 Novell Access Management 3 SSLVPN Server allows remote authenticated users to bypass VPN restrictions by making policy.txt read-only, disconnecting, then manually modifying policy.txt. | 9.0 |