Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6735

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6735
Last Modified 06 Apr 2010 10:22:52
Published 05 Apr 2010 11:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6735

Summary

NWFTPD.nlm before 5.08.06 in the FTP server in Novell NetWare does not properly handle partial matches for container names in the FTPREST.TXT file, which allows remote attackers to bypass intended access restrictions via an FTP session.

Vulnerable Systems

Operating System

  • Novell Netware

Application

  • Novell Netware Ftp Server


References

CONFIRM - https://bugzilla.novell.com/show_bug.cgi?id=260459

CONFIRM - http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1


Last Updated: 27 May 2016 10:46:37