Novell: Security Vulnerabilities
The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.
CVSS Score
7.5
EPSS Score
0.017
Published
1998-09-18
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
CVSS Score
2.1
EPSS Score
0.007
Published
1997-08-01
ICMP redirect messages may crash or lock up a host.
CVSS Score
5.0
EPSS Score
0.005
Published
1997-01-01
The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server.
CVSS Score
5.0
EPSS Score
0.014
Published
1996-07-01
LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password information to disk, which could allow local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.0
Published
1993-09-16
Page 68