Vulnerabilities > Novell > Netware > 5.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-2105 | Remote Security vulnerability in Novell Netware 5.1/6.0 The webacc servlet in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to read arbitrary .htt files via a full pathname in the error parameter. | 5.0 |
2004-12-31 | CVE-2004-2104 | Multiple vulnerability in Novell Netware 5.1/6.0 Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm. | 5.0 |
2004-12-31 | CVE-2004-2103 | Cross-Site Scripting vulnerability in Novell Netware 5.1/6.0 Cross-site scripting (XSS) vulnerability in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to process arbitrary script or HTML as other users via (1) a malformed request for a Perl program with script in the filename, (2) the User.id parameter to the webacc servlet, (3) the GWAP.version parameter to webacc, or (4) a URL request for a .bas file with script in the filename. network novell | 4.3 |
2003-08-27 | CVE-2003-0562 | Unspecified vulnerability in Novell Netware 5.1/6.0 Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service (ABEND) via a long input string. | 5.0 |
2003-04-11 | CVE-2002-1438 | Remote Perl Version Disclosure vulnerability in Novell Netware 5.1/6.0 The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to obtain Perl version information via the -v option. | 5.0 |
2003-04-11 | CVE-2002-1437 | Directory Traversal vulnerability in Novell Netware 5.1/6.0 Directory traversal vulnerability in the web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to read arbitrary files via an HTTP request containing "..%5c" (URL-encoded dot-dot backslash) sequences. | 5.0 |
2003-04-11 | CVE-2002-1436 | Unspecified vulnerability in Novell Netware 5.1/6.0 The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary Perl code via an HTTP POST request. | 7.5 |
2003-04-11 | CVE-2002-1418 | Buffer Overflow vulnerability in Novell NetBasic Interpreter Module Name Buffer overflow in the interpreter for Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to cause a denial of service (ABEND) via a long module name. | 5.0 |
2003-04-11 | CVE-2002-1417 | Directory Traversal vulnerability in Novell NetBasic Scripting Server Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL containing a "..%5c" sequence (modified dot-dot), which is mapped to the directory separator. | 5.0 |
2002-12-31 | CVE-2002-2096 | Remote Manager Authentication Buffer Overflow vulnerability in Novell Netware 5.1/6.0 Buffer overflow in Novell Remote Manager module, httpstk.nlm, in NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary code via a long (1) username or (2) password. | 7.5 |