Novell NetWare 6.5 before Support Pack 8, when an OES2 Linux server is installed into the NDS tree, does not require a password for the ApacheAdmin console, which allows remote malicious users to reconfigure the Apache HTTP Server via console operations.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell netware 6.5 |
||
novell netware |