Axel Dunkel

Name of the Vulnerable Software and Affected Versions: Novell iChain version 2.2 before Support Pack 1 Description: The issue is related to unknown vulnerability or vulnerabilities, possibly allowing unauthorized access to NCPIP.NLM and JSTCP.NLM. Recommendations: For Novell iChain version 2.2, apply Support Pack 1 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Novell iChain versions 2.1 before Field Patch 3 Novell iChain versions 2.2 before Field Patch 1a Description: The issue is related to multiple buffer overflows that can cause a denial of service (ABEND) and possibly allow the execution of arbitrary code. This can be achieved by providing a long `username` or through an unknown attack related to a special script against login. Recommendations: For Novell iChain version 2.1, apply Field Patch 3 to resolve the issue. For Novell iChain version 2.2, apply Field Patch 1a to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Novell iChain version 2.2 before Support Pack 1 Description: The issue allows users to access restricted or secure pages without authentication. Recommendations: For Novell iChain version 2.2, apply Support Pack 1 to resolve the issue.