Vulnerabilities > Novell > Netware > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-04-05 | CVE-2010-0625 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Netware and Netware FTP Server Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command. | 6.5 |
2010-04-05 | CVE-2007-6734 | Permissions, Privileges, and Access Controls vulnerability in Novell Netware and Netware FTP Server NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home server via unspecified vectors. | 4.0 |
2010-04-05 | CVE-2005-4888 | Denial-Of-Service vulnerability in Novell NetWare NWFTPD.nlm before 5.06.04 in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (excessive stale connections) by establishing many FTP sessions, which persist in the Not-Logged-In state after each session is completed. | 5.0 |
2010-04-05 | CVE-2004-2767 | Permissions, Privileges, and Access Controls vulnerability in Novell Netware and Netware FTP Server NWFTPD.nlm before 5.04.25 in the FTP server in Novell NetWare does not promptly close DS sessions, which allows remote attackers to cause a denial of service (connection slot exhaustion) by establishing many FTP sessions that persist for the lifetime of a DS session. | 4.3 |
2010-04-05 | CVE-2003-1592 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Netware and Netware FTP Server Multiple buffer overflows in NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allow remote attackers to cause a denial of service (abend) via a long (1) username or (2) password. | 5.0 |
2010-04-05 | CVE-2003-1591 | Denial-Of-Service vulnerability in Novell Netware 6.0/6.5 NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote attackers to cause a denial of service (console hang) via a large number of FTP sessions, which are not properly handled during an NLM unload. network novell | 4.3 |
2010-04-05 | CVE-2002-2434 | Denial-Of-Service vulnerability in Netware NWFTPD.nlm before 5.02i in the FTP server in Novell NetWare does not properly listen for data connections, which allows remote attackers to cause a denial of service (abend) via multiple FTP sessions. | 5.0 |
2010-04-05 | CVE-2002-2433 | Improper Input Validation vulnerability in Novell Netware and Netware FTP Server NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote authenticated users to cause a denial of service (abend) via a crafted ABOR command. | 4.0 |
2010-04-05 | CVE-2002-2432 | Denial-Of-Service vulnerability in Netware FTP Server Unspecified vulnerability in NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via a crafted username. | 5.0 |
2010-04-05 | CVE-2001-1587 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Netware NWFTPD.nlm before 5.01w in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via an anonymous STOU command. | 5.0 |