Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1772

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2002-1772
Last Modified 05 Sep 2008 04:31:28
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1772

Summary

Novell Netware 5.0 through 5.1 may allow local users to gain "Domain Admin" rights by logging into a Novell Directory Services (NDS) account, and executing "net use" on an NDS_ADM account that is not in the NT domain but has domain access rights, which allows the user to enter a null password.

Vulnerable Systems

Operating System

  • Novell Netware 5.0

  • Novell Netware 5.1


References

XF - netware-nds-unauth-access(8065)

BID - 4012


Last Updated: 27 May 2016 10:37:28