Filtered by vendor Novell
Subscribe
Total
670 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-1005 | 2 Netscape, Novell | 2 Enterprise Server, Groupwise | 2023-12-10 | 5.0 MEDIUM | N/A |
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. | |||||
CVE-2002-0929 | 1 Novell | 1 Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflows in the DHCP server for NetWare 6.0 SP1 allow remote attackers to cause a denial of service (reboot) via long DHCP requests. | |||||
CVE-2002-1413 | 1 Novell | 1 Netware | 2023-12-10 | 7.5 HIGH | N/A |
RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection. | |||||
CVE-2001-1231 | 1 Novell | 1 Groupwise | 2023-12-10 | 5.0 MEDIUM | N/A |
GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote attackers to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix. | |||||
CVE-2003-0638 | 1 Novell | 1 Ichain | 2023-12-10 | 7.5 HIGH | N/A |
Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login." | |||||
CVE-2002-0779 | 1 Novell | 1 Bordermanager | 2023-12-10 | 5.0 MEDIUM | N/A |
FTP proxy server for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service (network connectivity loss) via a connection to port 21 with a large amount of random data. | |||||
CVE-2004-2106 | 1 Novell | 1 Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to (1) /com/, (2) /com/novell/, (3) /com/novell/webaccess, or (4) /ns-icons/. | |||||
CVE-2000-0591 | 1 Novell | 1 Bordermanager | 2023-12-10 | 5.0 MEDIUM | N/A |
Novell BorderManager 3.0 and 3.5 allows remote attackers to bypass URL filtering by encoding characters in the requested URL. | |||||
CVE-2002-1283 | 1 Novell | 1 Emframe | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in Novell iManager (eMFrame) before 1.5 allows remote attackers to cause a denial of service via an authentication request with a long Distinguished Name (DN) attribute. | |||||
CVE-2002-1437 | 1 Novell | 1 Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in the web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to read arbitrary files via an HTTP request containing "..%5c" (URL-encoded dot-dot backslash) sequences. | |||||
CVE-2002-1418 | 1 Novell | 2 Netware, Small Business Suite | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in the interpreter for Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to cause a denial of service (ABEND) via a long module name. | |||||
CVE-2004-0081 | 23 4d, Apple, Avaya and 20 more | 66 Webstar, Mac Os X, Mac Os X Server and 63 more | 2023-12-10 | 5.0 MEDIUM | N/A |
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. | |||||
CVE-1999-1320 | 1 Novell | 1 Netware | 2023-12-10 | 4.6 MEDIUM | N/A |
Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing. | |||||
CVE-2003-0562 | 1 Novell | 1 Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service (ABEND) via a long input string. | |||||
CVE-1999-0929 | 1 Novell | 2 Http Server, Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests. | |||||
CVE-2004-1457 | 1 Novell | 1 Bordermanager | 2023-12-10 | 5.0 MEDIUM | N/A |
The Virtual Private Network (VPN) capability in Novell Bordermanager 3.8 allows remote attackers to cause a denial of service (ABEND in IKE.NLM) via a malformed IKE packet, as sent by the Striker ISAKMP Protocol Test Suite. | |||||
CVE-2002-0341 | 1 Novell | 1 Groupwise | 2023-12-10 | 5.0 MEDIUM | N/A |
GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote attackers to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter. | |||||
CVE-2004-2104 | 1 Novell | 1 Netware | 2023-12-10 | 5.0 MEDIUM | N/A |
Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm. | |||||
CVE-2002-1088 | 1 Novell | 1 Groupwise | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Novell GroupWise 6.0.1 Support Pack 1 allows remote attackers to execute arbitrary code via a long RCPT TO command. | |||||
CVE-2001-0355 | 1 Novell | 1 Groupwise | 2023-12-10 | 5.0 MEDIUM | N/A |
Novell Groupwise 5.5 (sp1 and sp2) allows a remote user to access arbitrary files via an implementation error in Groupwise system policies. |