Novell NetWare 5.1 installs sample applications that allow remote attackers to obtain sensitive information via (1) ndsobj.nlm, (2) allfield.jse, (3) websinfo.bas, (4) ndslogin.pl, (5) volscgi.pl, (6) lancgi.pl, (7) test.jse, or (8) env.pl.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Netware | Novell | 5.0 (including) | 5.0 (including) |
| Netware | Novell | 5.1 (including) | 5.1 (including) |
References
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10064452.htm
- http://www.kb.cert.org/vuls/id/159203
- http://www.osvdb.org/17461
- http://www.osvdb.org/17462
- http://www.osvdb.org/17463
- http://www.osvdb.org/17464
- http://www.osvdb.org/17465
- http://www.osvdb.org/17466
- http://www.osvdb.org/17467
- http://www.osvdb.org/17468
- http://www.procheckup.com/security_info/vuln_pr0201.html
- http://www.procheckup.com/security_info/vuln_pr0203.html
- http://www.securityfocus.com/advisories/4157
- http://www.securityfocus.com/advisories/4158
- http://www.securityfocus.com/bid/4874
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9212
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10064452.htm
- http://www.kb.cert.org/vuls/id/159203
- http://www.osvdb.org/17461
- http://www.osvdb.org/17462
- http://www.osvdb.org/17463
- http://www.osvdb.org/17464
- http://www.osvdb.org/17465
- http://www.osvdb.org/17466
- http://www.osvdb.org/17467
- http://www.osvdb.org/17468
- http://www.procheckup.com/security_info/vuln_pr0201.html
- http://www.procheckup.com/security_info/vuln_pr0203.html
- http://www.securityfocus.com/advisories/4157
- http://www.securityfocus.com/advisories/4158
- http://www.securityfocus.com/bid/4874
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9212