Vulnerabilities > Novell > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-08-27 | CVE-2003-0636 | Remote Security vulnerability in Novell Ichain 2.2 Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites. | 7.5 |
2003-04-11 | CVE-2002-1436 | Unspecified vulnerability in Novell Netware 5.1/6.0 The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary Perl code via an HTTP POST request. | 7.5 |
2003-04-11 | CVE-2002-1413 | Authentication Bypass vulnerability in Novell Netware 6.0 RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection. | 7.5 |
2003-03-31 | CVE-2002-1552 | Unspecified vulnerability in Novell Edirectory Novell eDirectory (eDir) 8.6.2 and Netware 5.1 eDir 85.x allows users with expired passwords to gain inappropriate permissions when logging in from Remote Manager. | 7.5 |
2002-12-31 | CVE-2002-2096 | Remote Manager Authentication Buffer Overflow vulnerability in Novell Netware 5.1/6.0 Buffer overflow in Novell Remote Manager module, httpstk.nlm, in NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary code via a long (1) username or (2) password. | 7.5 |
2002-10-04 | CVE-2002-1088 | Buffer Overflow vulnerability in Novell Groupwise 6.0/6.0.1 Buffer overflow in Novell GroupWise 6.0.1 Support Pack 1 allows remote attackers to execute arbitrary code via a long RCPT TO command. | 7.5 |
2002-10-04 | CVE-2002-0996 | Buffer Overflow vulnerability in Novell Netmail and Netmail XE Multiple buffer overflows in Novell NetMail (NIMS) 3.0.3 before 3.0.3C allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) WebAdmin or (2) ModWeb. | 7.5 |
2001-12-15 | CVE-2001-1195 | Authentication vulnerability in Novell Groupwise Servlet Gateway Default Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote attackers to gain privileges. | 7.5 |
2000-06-26 | CVE-2000-0600 | Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL. | 7.5 |
1999-12-31 | CVE-1999-1382 | Unspecified vulnerability in Novell Netware NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program. | 7.2 |