Vulnerabilities > Novell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-11-23 | CVE-2004-0079 | NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. | 7.5 |
| 2004-01-15 | CVE-2005-1247 | Denial-Of-Service vulnerability in Novell Nsure Audit 1.0.1 webadmin.exe in Novell Nsure Audit 1.0.1 allows remote attackers to cause a denial of service via malformed ASN.1 packets in corrupt client certificates to an SSL server, as demonstrated using an exploit for the OpenSSL ASN.1 parsing vulnerability. | 5.0 |
| 2003-12-31 | CVE-2003-1551 | Malicious Script vulnerability in Novell GroupWise WebAccess Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script." | 10.0 |
| 2003-12-15 | CVE-2003-0976 | Remote Security vulnerability in Novell Netware 6.5 NFS Server (XNFS.NLM) for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS should deny the host. | 7.5 |
| 2003-10-27 | CVE-2003-1150 | Buffer Overrun vulnerability in Novell PMAP.NLM Buffer overflow in the portmapper service (PMAP.NLM) in Novell NetWare 6 SP3 and ZenWorks for Desktops 3.2 SP2 through 4.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors. | 7.5 |
| 2003-08-27 | CVE-2003-0639 | Remote Security vulnerability in Novell Ichain 2.1 Unknown vulnerability in Novell iChain 2.2 before Support Pack 1 allows users to access restricted or secure pages without authentication. | 5.0 |
| 2003-08-27 | CVE-2003-0638 | Denial-Of-Service vulnerability in Novell Ichain 2.1 Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login." | 7.5 |
| 2003-08-27 | CVE-2003-0636 | Remote Security vulnerability in Novell Ichain 2.2 Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites. | 7.5 |
| 2003-08-27 | CVE-2003-0635 | Remote Security vulnerability in Novell Ichain 2.2 Unknown vulnerability or vulnerabilities in Novell iChain 2.2 before Support Pack 1, with unknown impact, possibly related to unauthorized access to (1) NCPIP.NLM and (2) JSTCP.NLM. | 5.0 |
| 2003-08-27 | CVE-2003-0562 | Unspecified vulnerability in Novell Netware 5.1/6.0 Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service (ABEND) via a long input string. | 5.0 |