CVE-2003-1596

Published: Apr 5, 2010Modified: Apr 29, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restrictions via an FTP session.

Affected (12)

Products: Novell: Netware Ftp Server, Netware

Novell

2 products

Netware Ftp Server

Netware

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Novell Netware Ftp Server	Up to 5.03b
Novell Netware Ftp Server	Version 5.01i
Novell Netware Ftp Server	Version 5.01o
Novell Netware Ftp Server	Version 5.01w
Novell Netware Ftp Server	Version 5.01y
Novell Netware Ftp Server	Version 5.02b
Novell Netware Ftp Server	Version 5.02i
Novell Netware Ftp Server	Version 5.02r
Novell Netware Ftp Server	Version 5.02y
Novell Netware	Version 5.1
Novell Netware	Version 6.0
Novell Netware	Version 6.5

Related CWEs

CWE-264

References (2)

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Source: cve@mitre.org

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.