CVE-2004-2767

Published: Apr 5, 2010Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

NWFTPD.nlm before 5.04.25 in the FTP server in Novell NetWare does not promptly close DS sessions, which allows remote attackers to cause a denial of service (connection slot exhaustion) by establishing many FTP sessions that persist for the lifetime of a DS session.

Affected (2)

Products: Novell: Netware Ftp Server, Netware

2 products

Netware Ftp Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Novell Netware Ftp Server	All versions
Novell Netware	All versions

Related CWEs

References (2)

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Source: cve@mitre.org

Vendor Advisory

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.