CVE Vulnerabilities

CVE-2000-0651

Published: Jul 07, 2000 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the victim’s machine.

Affected Software

Name Vendor Start Version End Version
Bordermanager Novell 3.0 3.0
Bordermanager Novell 3.5 3.5

References