CVE Vulnerabilities

CVE-2003-1596

Published: Apr 05, 2010 | Modified: Jun 08, 2010
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restrictions via an FTP session.

Affected Software

Name Vendor Start Version End Version
Netware_ftp_server Novell * 5.03b
Netware_ftp_server Novell 5.01i 5.01i
Netware_ftp_server Novell 5.01o 5.01o
Netware_ftp_server Novell 5.01w 5.01w
Netware_ftp_server Novell 5.01y 5.01y
Netware_ftp_server Novell 5.02b 5.02b
Netware_ftp_server Novell 5.02i 5.02i
Netware_ftp_server Novell 5.02r 5.02r
Netware_ftp_server Novell 5.02y 5.02y

References