Lucene search

[email protected]CVE-2003-1594

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2003-1594

2022-10-0316:15:42

CWE-264

[email protected]

web.nvd.nist.gov

nwftpd.nlm

novell netware 6.5

ftp server

cve-2003-1594

ftprest.txt

access restrictions

security vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.3%

JSON

NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly enforce FTPREST.TXT settings, which allows remote attackers to bypass intended access restrictions via an FTP session.

Affected configurations

NVD

Node

novellnetware_ftp_server

AND

novellnetwareMatch6.5

CPENameOperatorVersion
novell:netware_ftp_servernovell netware ftp servereq*
novell:netwarenovell netwareeq6.5

CPE	Name	Operator	Version
novell:netware_ftp_server	novell netware ftp server	eq	*
novell:netware	novell netware	eq	6.5

References

www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.3%

JSON

Related for CVE-2003-1594

nvd1 cvelist1