PT-2010-1232 · Novell · Nwftpd.Nlm+1
Publicado
2010-04-05
·
Atualizado
2010-04-06
·
CVE-2007-6734
CVSS v2.0
4.0
Média
| Vetor | AV:N/AC:L/Au:S/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Novell NetWare versions prior to 6.5 SP7 with NWFTPD.nlm before 5.08.07
Description
The issue is related to the improper implementation of the FTPREST.TXT NOREMOTE restriction in the FTP server. This allows remote authenticated users to access directories outside of the home server.
Recommendations
For versions prior to 6.5 SP7 with NWFTPD.nlm before 5.08.07, update NWFTPD.nlm to version 5.08.07 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Nwftpd.Nlm
Novell Netware