Lucene search

[email protected]NVD:CVE-2003-1596

HistoryApr 05, 2010 - 3:30 p.m.

CVE-2003-1596

2010-04-0515:30:00

CWE-264

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.2%

JSON

NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restrictions via an FTP session.

Affected configurations

NVD

Node

novellnetware_ftp_serverRange≤5.03b

novellnetware_ftp_serverMatch5.01i

novellnetware_ftp_serverMatch5.01o

novellnetware_ftp_serverMatch5.01w

novellnetware_ftp_serverMatch5.01y

novellnetware_ftp_serverMatch5.02b

novellnetware_ftp_serverMatch5.02i

novellnetware_ftp_serverMatch5.02r

novellnetware_ftp_serverMatch5.02y

AND

novellnetwareMatch5.1

novellnetwareMatch6.0

novellnetwareMatch6.5

References

www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.2%

JSON

Related for NVD:CVE-2003-1596

cve1 cvelist1