Novell: >> Netware Security Vulnerabilities
Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests.
CVSS Score
5.0
EPSS Score
0.019
Published
1999-06-16
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.
CVSS Score
5.0
EPSS Score
0.035
Published
1999-04-09
The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.
CVSS Score
7.5
EPSS Score
0.071
Published
1998-09-18
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
CVSS Score
4.0
EPSS Score
0.316
Published
1997-08-01
ICMP redirect messages may crash or lock up a host.
CVSS Score
5.0
EPSS Score
0.011
Published
1997-01-01
LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password information to disk, which could allow local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.004
Published
1993-09-16
Page 8