PT-1998-1127 · Novell · Novell Netware Nds

Published

1998-09-18

Updated

2017-12-19

CVE-1999-1020

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Novell Netware NDS version 5.99

Description The issue allows an unauthenticated client to have Read access for the tree, enabling remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.

Recommendations For Novell Netware NDS version 5.99, consider restricting access to CX.EXE and NLIST.EXE to prevent unauthorized reading of sensitive information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1020

Affected Products

Novell Netware Nds

PT-1998-1127 · Novell · Novell Netware Nds

CVE-1999-1020

Related Identifiers

Affected Products

References · 5