Lucene search

[email protected]CVE-2010-0625

HistoryApr 05, 2010 - 4:30 p.m.

CVE-2010-0625

2010-04-0516:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-0625

buffer overflow

nwftpd.nlm

novell netware

remote authentication

dos

arbitrary code execution

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.1 High

AI Score

Confidence

High

0.29 Low

EPSS

Percentile

96.9%

JSON

Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.

Affected configurations

NVD

Node

novellnetware_ftp_serverMatch5.01i

novellnetware_ftp_serverMatch5.01o

novellnetware_ftp_serverMatch5.01w

novellnetware_ftp_serverMatch5.01y

novellnetware_ftp_serverMatch5.02b

novellnetware_ftp_serverMatch5.02i

novellnetware_ftp_serverMatch5.02r

novellnetware_ftp_serverMatch5.02y

novellnetware_ftp_serverMatch5.03b

novellnetware_ftp_serverMatch5.03l

novellnetware_ftp_serverMatch5.04.5

novellnetware_ftp_serverMatch5.04.8

novellnetware_ftp_serverMatch5.04.20

novellnetware_ftp_serverMatch5.04.25

novellnetware_ftp_serverMatch5.05

novellnetware_ftp_serverMatch5.05.04

novellnetware_ftp_serverMatch5.06.04

novellnetware_ftp_serverMatch5.06.05

novellnetware_ftp_serverMatch5.07

novellnetware_ftp_serverMatch5.07.02

AND

novellnetwareMatch5.1

novellnetwareMatch5.1sp2a

novellnetwareMatch5.1sp3

novellnetwareMatch5.1sp4

novellnetwareMatch5.1sp6

novellnetwareMatch6.0

novellnetwareMatch6.0sp1

novellnetwareMatch6.0sp2

novellnetwareMatch6.0sp3

novellnetwareMatch6.5

novellnetwareMatch6.5sp1

novellnetwareMatch6.5sp1.1a

novellnetwareMatch6.5sp1.1b

novellnetwareMatch6.5sp2

novellnetwareMatch6.5sp3

novellnetwareMatch6.5sp4

novellnetwareMatch6.5sp5

novellnetwareMatch6.5sp6

novellnetwareMatch6.5sp7

novellnetwareMatch6.5sp8

CPENameOperatorVersion
novell:netware_ftp_servernovell netware ftp servereq5.01i
novell:netware_ftp_servernovell netware ftp servereq5.01o
novell:netware_ftp_servernovell netware ftp servereq5.01w
novell:netware_ftp_servernovell netware ftp servereq5.01y
novell:netware_ftp_servernovell netware ftp servereq5.02b
novell:netware_ftp_servernovell netware ftp servereq5.02i
novell:netware_ftp_servernovell netware ftp servereq5.02r
novell:netware_ftp_servernovell netware ftp servereq5.02y
novell:netware_ftp_servernovell netware ftp servereq5.03b
novell:netware_ftp_servernovell netware ftp servereq5.03l

CPE	Name	Operator	Version
novell:netware_ftp_server	novell netware ftp server	eq	5.01i
novell:netware_ftp_server	novell netware ftp server	eq	5.01o
novell:netware_ftp_server	novell netware ftp server	eq	5.01w
novell:netware_ftp_server	novell netware ftp server	eq	5.01y
novell:netware_ftp_server	novell netware ftp server	eq	5.02b
novell:netware_ftp_server	novell netware ftp server	eq	5.02i
novell:netware_ftp_server	novell netware ftp server	eq	5.02r
novell:netware_ftp_server	novell netware ftp server	eq	5.02y
novell:netware_ftp_server	novell netware ftp server	eq	5.03b
novell:netware_ftp_server	novell netware ftp server	eq	5.03l