Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0746

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-0746
Last Modified 05 Sep 2008 04:47:11
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0746

Summary

The Mini FTP server in Novell iChain 2.2 and 2.3 SP2 and earlier allows remote unauthenticated attackers to obtain the full path of the server via the PWD command.

Vulnerable Systems

Application

  • Novell Ichain 2.2

  • Novell Ichain 2.2.113

  • Novell Ichain 2.3


References

XF - ichain-path-disclosure(19643)

BID - 12766

MISC - http://www.infobyte.com.ar/adv/ISR-03.html

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/10096886.htm

SECTRACK - 1013407

SECUNIA - 14537

BUGTRAQ - 20050315 [ISR] - Novell iChain Mini FTP Server Unauthorized Remote Path Disclosure Vulnerability


Last Updated: 27 May 2016 10:39:55