PT-2010-1213 · Novell · Novell Netware

Publicado

2010-04-05

Atualizado

2010-04-06

CVE-2003-1593

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Novell NetWare versions 6.0 before SP4 and 6.5 before SP1

Description The issue concerns the NWFTPD.nlm component in the FTP server, which fails to enforce domain-name login restrictions. This allows remote attackers to bypass intended access control by establishing an FTP connection.

Recommendations For Novell NetWare version 6.0, apply SP4 or later to resolve the issue. For Novell NetWare version 6.5, apply SP1 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2003-1593

Produtos afetados

Novell Netware

PT-2010-1213 · Novell · Novell Netware

CVE-2003-1593

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2