PT-1999-1761 · Prosoft · Prosoft Netware Client

Published

1999-11-14

Updated

2016-10-18

CVE-1999-1528

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: ProSoft Netware Client version 5.12

Description: The issue concerns a situation where a user's NDS session remains unprotected after logging off the system, allowing other users of the same system to access the session. This occurs because the ProSoft Netware Client does not automatically log a user out of the NDS tree when the user logs off the system.

Recommendations: For ProSoft Netware Client version 5.12, consider implementing a manual logout procedure from the NDS tree when a user logs off the system to protect the NDS session from unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1528

Affected Products

Prosoft Netware Client

PT-1999-1761 · Prosoft · Prosoft Netware Client

CVE-1999-1528

Related Identifiers

Affected Products

References · 3