PT-2001-2365 · Novell · Netware Enterprise Web Server

Published

2001-08-14

Updated

2018-10-30

CVE-2001-1233

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Netware Enterprise Web Server version 5.1

Description The issue allows remote attackers to enumerate user names, group names, and other system information by accessing the ndsobj.nlm module. This can potentially reveal sensitive system details.

Recommendations For Netware Enterprise Web Server version 5.1, consider restricting access to the ndsobj.nlm module to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1233

Affected Products

Netware Enterprise Web Server

PT-2001-2365 · Novell · Netware Enterprise Web Server

CVE-2001-1233

Related Identifiers

Affected Products

References · 3