Vulnerabilities > Novell > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-10-10 | CVE-2006-5229 | Information Exposure vulnerability in Openbsd Openssh 4.1 OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames than invalid ones, as demonstrated by sshtime. | 2.6 |
| 2006-08-17 | CVE-2006-4186 | Information Disclosure vulnerability in Novell Edirectory 8.7.3.8 The iManager in eMBoxClient.jar in Novell eDirectory 8.7.3.8 writes passwords in plaintext to a log file, which allows local users to obtain passwords by reading the file. | 2.1 |
| 2006-05-26 | CVE-2006-2612 | Local Security vulnerability in Novell Client 4.8/4.9 Novell Client for Windows 4.8 and 4.9 does not restrict access to the clipboard contents while a machine is locked, which allows users with physical access to read the current clipboard contents by pasting them into the "User Name" field on the login prompt. | 2.1 |
| 2005-12-31 | CVE-2005-1976 | Unspecified vulnerability in Novell Netmail 3.5.2 Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files. | 1.7 |
| 2005-12-31 | CVE-2005-4791 | Local Privilege Escalation vulnerability in Novell Suse Linux 10.0 Multiple untrusted search path vulnerabilities in SUSE Linux 10.0 cause the working directory to be added to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code via (1) liferea or (2) banshee. | 2.1 |
| 2005-05-02 | CVE-2005-1065 | Unspecified vulnerability in Novell Linux Desktop 9 tetex in Novell Linux Desktop 9 allows local users to determine the existence of arbitrary files via a symlink attack in the /var/cache/fonts directory. | 2.1 |
| 2004-12-31 | CVE-2004-2414 | Unspecified vulnerability in Novell Netware 6.5 Novell NetWare 6.5 SP 1.1, when installing or upgrading using the Overlay CDs and performing a custom installation with OpenSSH, includes sensitive password information in the (1) NIOUTPUT.TXT and (2) NI.LOG log files, which might allow local users to obtain the passwords. | 2.1 |
| 2002-12-31 | CVE-2002-1754 | Denial-Of-Service vulnerability in Netware Client Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial of service (crash) by using ping, traceroute, or a similar utility to force the client to resolve a large hostname. | 2.1 |
| 2002-12-31 | CVE-2002-2083 | Local Security vulnerability in Novell Netware The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen. | 2.1 |