Vulnerabilities > Novell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-04-11 | CVE-2002-1438 | Remote Perl Version Disclosure vulnerability in Novell Netware 5.1/6.0 The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to obtain Perl version information via the -v option. | 5.0 |
| 2003-04-11 | CVE-2002-1437 | Directory Traversal vulnerability in Novell Netware 5.1/6.0 Directory traversal vulnerability in the web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to read arbitrary files via an HTTP request containing "..%5c" (URL-encoded dot-dot backslash) sequences. | 5.0 |
| 2003-04-11 | CVE-2002-1436 | Unspecified vulnerability in Novell Netware 5.1/6.0 The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary Perl code via an HTTP POST request. | 7.5 |
| 2003-04-11 | CVE-2002-1418 | Buffer Overflow vulnerability in Novell NetBasic Interpreter Module Name Buffer overflow in the interpreter for Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to cause a denial of service (ABEND) via a long module name. | 5.0 |
| 2003-04-11 | CVE-2002-1417 | Directory Traversal vulnerability in Novell NetBasic Scripting Server Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL containing a "..%5c" sequence (modified dot-dot), which is mapped to the directory separator. | 5.0 |
| 2003-04-11 | CVE-2002-1413 | Authentication Bypass vulnerability in Novell Netware 6.0 RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection. | 7.5 |
| 2003-03-31 | CVE-2002-1552 | Unspecified vulnerability in Novell Edirectory Novell eDirectory (eDir) 8.6.2 and Netware 5.1 eDir 85.x allows users with expired passwords to gain inappropriate permissions when logging in from Remote Manager. | 7.5 |
| 2002-12-31 | CVE-2002-2119 | Improper Handling of Case Sensitivity vulnerability in Novell Edirectory 8.6.2/8.7 Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing. | 9.8 |
| 2002-12-31 | CVE-2002-2096 | Remote Manager Authentication Buffer Overflow vulnerability in Novell Netware 5.1/6.0 Buffer overflow in Novell Remote Manager module, httpstk.nlm, in NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary code via a long (1) username or (2) password. | 7.5 |
| 2002-12-31 | CVE-2002-2083 | Local Security vulnerability in Novell Netware The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen. | 2.1 |