Vulnerabilities > Novell
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-04-05 | CVE-2003-1591 | Denial-Of-Service vulnerability in Novell Netware 6.0/6.5 NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote attackers to cause a denial of service (console hang) via a large number of FTP sessions, which are not properly handled during an NLM unload. network novell | 4.3 |
2010-04-05 | CVE-2002-2434 | Denial-Of-Service vulnerability in Netware NWFTPD.nlm before 5.02i in the FTP server in Novell NetWare does not properly listen for data connections, which allows remote attackers to cause a denial of service (abend) via multiple FTP sessions. | 5.0 |
2010-04-05 | CVE-2002-2433 | Improper Input Validation vulnerability in Novell Netware and Netware FTP Server NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote authenticated users to cause a denial of service (abend) via a crafted ABOR command. | 4.0 |
2010-04-05 | CVE-2002-2432 | Denial-Of-Service vulnerability in Netware FTP Server Unspecified vulnerability in NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via a crafted username. | 5.0 |
2010-04-05 | CVE-2001-1587 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Netware NWFTPD.nlm before 5.01w in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via an anonymous STOU command. | 5.0 |
2010-04-05 | CVE-2000-1246 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Netware and Netware FTP Server NWFTPD.nlm before 5.01o in the FTP server in Novell NetWare 5.1 SP3 allows remote authenticated users to cause a denial of service (abend) by sending an RNTO command after a failed RNFR command. | 3.5 |
2010-04-05 | CVE-2000-1245 | Permissions, Privileges, and Access Controls vulnerability in Novell Netware and Netware FTP Server Multiple unspecified vulnerabilities in NWFTPD.nlm before 5.01o in the FTP server in Novell NetWare 5.1 SP3 allow remote attackers to bypass intended restrictions on anonymous access via unknown vectors. | 7.5 |
2010-03-03 | CVE-2009-4662 | Cross-Site Scripting vulnerability in Novell Groupwise Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 7.0 before 7.03 HP4 and 8.0 before 8.0 SP1 allows remote attackers to inject arbitrary web script or HTML via the User.Theme.index parameter. | 4.3 |
2010-02-26 | CVE-2009-4655 | Cryptographic Issues vulnerability in Novell Edirectory 8.8.5 The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote attackers to hijack sessions via a modified cookie. | 7.5 |
2010-02-26 | CVE-2009-4654 | Buffer Errors vulnerability in Novell Edirectory 8.8 Stack-based buffer overflow in the dhost module in Novell eDirectory 8.8 SP5 for Windows allows remote authenticated users to execute arbitrary code via long sadminpwd and verifypwd parameters in a submit action to /dhost/httpstk. | 9.0 |