Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell netware 6.5 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2009-5153
In Novell NetWare prior to 6.5 SP8, a stack buffer overflow in processing of CALLIT RPC calls in the NFS Portmapper daemon in PKERNEL.NLM allowed remote unauthenticated malicious users to execute code, because a length field was incorrectly trusted.
Microfocus Netware 6.5
Microfocus Netware
NA
CVE-2011-4191
Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote malicious users to execute arbitrary code or cause a denial of service (abend or NFS outage) via long packets.
Novell Netware 6.5
3 EDB exploits
NA
CVE-2010-4228
Stack-based buffer overflow in NWFTPD.NLM prior to 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a different vulnerability than CVE-2010-0625.4.
Novell Netware 5.1
Novell Netware 6.0
Novell Netware 6.5
1 EDB exploit
NA
CVE-2010-4227
The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote malicious users to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.
Novell Netware 6.5
Novell Netware
1 EDB exploit
NA
CVE-2010-2351
Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and previous versions allows remote malicious users to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.
Novell Netware 6.5
Novell Netware 6.0
Novell Netware 5.0
Novell Netware
Novell Netware 5.1
1 EDB exploit
NA
CVE-2010-0625
Stack-based buffer overflow in NWFTPD.nlm prior to 5.10.01 in the FTP server in Novell NetWare 5.1 up to and including 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, o...
Novell Netware Ftp Server 5.01i
Novell Netware Ftp Server 5.02y
Novell Netware Ftp Server 5.03b
Novell Netware Ftp Server 5.05.04
Novell Netware Ftp Server 5.06.04
Novell Netware Ftp Server 5.06.05
Novell Netware Ftp Server 5.01o
Novell Netware Ftp Server 5.01w
Novell Netware Ftp Server 5.03l
Novell Netware Ftp Server 5.04.20
Novell Netware Ftp Server 5.07
Novell Netware Ftp Server 5.07.02
Novell Netware Ftp Server 5.02i
Novell Netware Ftp Server 5.02r
Novell Netware Ftp Server 5.04.8
Novell Netware Ftp Server 5.05
Novell Netware Ftp Server 5.01y
Novell Netware Ftp Server 5.02b
Novell Netware Ftp Server 5.04.25
Novell Netware Ftp Server 5.04.5
Novell Netware 5.1
Novell Netware 6.5
NA
CVE-2003-1591
NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote malicious users to cause a denial of service (console hang) via a large number of FTP sessions, which are not properly handled during an NLM unload.
Novell Netware 6.0
Novell Netware 6.5
NA
CVE-2003-1592
Multiple buffer overflows in NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allow remote malicious users to cause a denial of service (abend) via a long (1) username or (2) password.
Novell Netware Ftp Server
Novell Netware 6.0
Novell Netware 6.5
NA
CVE-2003-1593
NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 does not enforce domain-name login restrictions, which allows remote malicious users to bypass intended access control via an FTP connection.
Novell Netware Ftp Server
Novell Netware 6.0
Novell Netware 6.5
NA
CVE-2003-1594
NWFTPD.nlm prior to 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly enforce FTPREST.TXT settings, which allows remote malicious users to bypass intended access restrictions via an FTP session.
Novell Netware Ftp Server
Novell Netware 6.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »