Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1086

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-1999-1086
Last Modified 05 Sep 2008 04:18:41
Published 15 Jul 1999 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-1086

Summary

Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls.

Vulnerable Systems

Operating System

  • Novell Netware 4.1

  • Novell Netware 4.11

  • Novell Netware 5.0


References

BID - 528

BUGTRAQ - 19990715 NMRC Advisory: Netware 5 Client Hijacking


Last Updated: 27 May 2016 10:35:16