Netware

netware

Vendor: Novell • 71 CVEs

CVEs (71)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2011-4191 1Novell 1Netware Apr 29, 2026 Nov 30, 2011 N/A· v4 N/A· v3 7.5 HIGH· v2 Stack-based buffer overflow in the xdrDecodeString function in XNFS.NLM in Novell NetWare 6.5 SP8 allows remote attackers to execute arbitrary code or cause a denial of service (abend or NFS outage) via long packets.
CVE-2010-4228 1Novell 1Netware Apr 29, 2026 Mar 22, 2011 N/A· v4 N/A· v3 9.0 HIGH· v2 Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a dif...Show more Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a different vulnerability than CVE-2010-0625.4.Show less
CVE-2010-4227 1Novell 1Netware Apr 29, 2026 Feb 25, 2011 N/A· v4 N/A· v3 10.0 HIGH· v2 The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UD...Show more The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.Show less
CVE-2010-2351 1Novell 1Netware Apr 29, 2026 Jun 21, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.
CVE-2010-0625 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary...Show more Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.Show less
CVE-2007-6735 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 NWFTPD.nlm before 5.08.06 in the FTP server in Novell NetWare does not properly handle partial matches for container names in the FTPREST.TXT file, which allows remote attackers to bypass intended access restrictions via...Show more NWFTPD.nlm before 5.08.06 in the FTP server in Novell NetWare does not properly handle partial matches for container names in the FTPREST.TXT file, which allows remote attackers to bypass intended access restrictions via an FTP session.Show less
CVE-2007-6734 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 4.0 MEDIUM· v2 NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home se...Show more NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home server via unspecified vectors.Show less
CVE-2005-4888 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 NWFTPD.nlm before 5.06.04 in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (excessive stale connections) by establishing many FTP sessions, which persist in the Not-Logged-In state...Show more NWFTPD.nlm before 5.06.04 in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (excessive stale connections) by establishing many FTP sessions, which persist in the Not-Logged-In state after each session is completed.Show less
CVE-2005-4887 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 NWFTPD.nlm before 5.06.05 in the FTP server in Novell NetWare 6.5 SP5 allows attackers to have an unspecified impact via vectors related to passwords.
CVE-2004-2767 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 NWFTPD.nlm before 5.04.25 in the FTP server in Novell NetWare does not promptly close DS sessions, which allows remote attackers to cause a denial of service (connection slot exhaustion) by establishing many FTP sessions...Show more NWFTPD.nlm before 5.04.25 in the FTP server in Novell NetWare does not promptly close DS sessions, which allows remote attackers to cause a denial of service (connection slot exhaustion) by establishing many FTP sessions that persist for the lifetime of a DS session.Show less
CVE-2003-1596 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restri...Show more NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restrictions via an FTP session.Show less
CVE-2003-1595 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 10.0 HIGH· v2 NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly perform "intruder detection," which has unspecified impact and attack vectors.
CVE-2003-1594 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly enforce FTPREST.TXT settings, which allows remote attackers to bypass intended access restrictions via an FTP session.
CVE-2003-1593 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 7.5 HIGH· v2 NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 does not enforce domain-name login restrictions, which allows remote attackers to bypass intended access control via an FTP connection.
CVE-2003-1592 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Multiple buffer overflows in NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allow remote attackers to cause a denial of service (abend) via a long (1) username or (2) password.
CVE-2003-1591 1Novell 1Netware Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote attackers to cause a denial of service (console hang) via a large number of FTP sessions, which are not properl...Show more NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allows user-assisted remote attackers to cause a denial of service (console hang) via a large number of FTP sessions, which are not properly handled during an NLM unload.Show less
CVE-2002-2434 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 NWFTPD.nlm before 5.02i in the FTP server in Novell NetWare does not properly listen for data connections, which allows remote attackers to cause a denial of service (abend) via multiple FTP sessions.
CVE-2002-2433 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 4.0 MEDIUM· v2 NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote authenticated users to cause a denial of service (abend) via a crafted ABOR command.
CVE-2002-2432 1Novell 2Netware Netware Ftp Server Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via a crafted username.
CVE-2001-1587 1Novell 1Netware Apr 29, 2026 Apr 5, 2010 N/A· v4 N/A· v3 5.0 MEDIUM· v2 NWFTPD.nlm before 5.01w in the FTP server in Novell NetWare allows remote attackers to cause a denial of service (abend) via an anonymous STOU command.

12 3 4 Next