Vulnerability Details CVE-2004-2767
NWFTPD.nlm before 5.04.25 in the FTP server in Novell NetWare does not promptly close DS sessions, which allows remote attackers to cause a denial of service (connection slot exhaustion) by establishing many FTP sessions that persist for the lifetime of a DS session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 69.9%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2004-2767
-
cpe:2.3:a:novell:netware_ftp_server:-
-
cpe:2.3:a:novell:netware_ftp_server:5.06.05
-
cpe:2.3:a:novell:netware_ftp_server:5.07
-
cpe:2.3:o:novell:netware:-
-
cpe:2.3:o:novell:netware:3.0
-
cpe:2.3:o:novell:netware:3.12
-
cpe:2.3:o:novell:netware:4.0
-
cpe:2.3:o:novell:netware:4.01
-
cpe:2.3:o:novell:netware:4.1
-
cpe:2.3:o:novell:netware:4.11
-
cpe:2.3:o:novell:netware:5.0
-
cpe:2.3:o:novell:netware:5.1
-
cpe:2.3:o:novell:netware:6.0
-
cpe:2.3:o:novell:netware:6.5