Novell: >> Netware Security Vulnerabilities
Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests.
CVSS Score
5.0
EPSS Score
0.002
Published
1999-06-16
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.
CVSS Score
5.0
EPSS Score
0.008
Published
1999-04-09
The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.
CVSS Score
7.5
EPSS Score
0.017
Published
1998-09-18
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
CVSS Score
2.1
EPSS Score
0.009
Published
1997-08-01
ICMP redirect messages may crash or lock up a host.
CVSS Score
5.0
EPSS Score
0.002
Published
1997-01-01
LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password information to disk, which could allow local users to gain privileges.
CVSS Score
4.6
EPSS Score
0.0
Published
1993-09-16
Page 8