CVE-2003-1593

Published: Apr 5, 2010Modified: Apr 29, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 does not enforce domain-name login restrictions, which allows remote attackers to bypass intended access control via an FTP connection.

Affected (6)

Products: Novell: Netware Ftp Server, Netware

Novell

2 products

Netware Ftp Server

Netware

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Novell Netware Ftp Server	All versions
Novell Netware	Version 6.0
Novell Netware	Version 6.0 sp1
Novell Netware	Version 6.0 sp2
Novell Netware	Version 6.0 sp3
Novell Netware	Version 6.5

Related CWEs

CWE-264

References (2)

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Source: cve@mitre.org

Vendor Advisory

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.