Searching novell http server software vulnerabilities

Netware Enterprise Web Server 5.1 running Group

Enterprise | WebAccess | GroupWise | Directory | Services | Netware | running | Novell | Server | Web |

Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services (NDS) enabled allows remote attackers to enumerate user names, group names and other system information by accessing ndsobj.nlm.


FTP proxy server for Novell BorderManager 3.6 S

BorderManager | attackers | service | remote | denial | allows | server | Novell | proxy | cause | FTP |

FTP proxy server for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service (network connectivity loss) via a connection to port 21 with a large amount of random data.


Novell Netware FTP server NWFTPD before 5.02r a

attackers | service | Netware | denial | allows | remote | server | Novell | before | NWFTPD | cause | 502r | FTP |

Novell Netware FTP server NWFTPD before 5.02r allows remote attackers to cause a denial of service (CPU consumption) via a connection to the server followed by a carriage return, and possibly other invalid commands with improper syntax or length.


Format string vulnerability in the FTP server f

vulnerability | Netware | server | Novell | Format | string | SP1 | FTP |

Format string vulnerability in the FTP server for Novell Netware 6.0 SP1 (NWFTPD) allows remote attackers to cause a denial of service (ABEND) via format strings in the USER command.


The webacc servlet in Novell NetWare Enterprise

Enterprise | attackers | parameter | arbitrary | pathname | servlet | NetWare | Novell | webacc | Server | allows | remote | files | error | full | read | Web | htt | via |

The webacc servlet in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to read arbitrary .htt files via a full pathname in the error parameter.


Novell NetWare Enterprise Web Server 5.1 and 6.

directories | Enterprise | attackers | request | NetWare | direct | remote | Server | Novell | allows | list | Web | via |

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to (1) /com/, (2) /com/novell/, (3) /com/novell/webaccess, or (4) /ns-icons/.


The Telnet listener for Novell iChain Server be

listener | Server | before | iChain | Telnet | Novell | Patch | Field |

The Telnet listener for Novell iChain Server before 2.2 Field Patch 3b 2.2.116 does not have a password by default, which allows remote attackers to gain access.


Unknown vulnerability in Novell GroupWise and G

vulnerability | GWAPACHECONF | directories | attackers | WebAccess | GroupWise | NetWare | through | Unknown | running | remote | allows | Server | Apache | Novell | loaded | using | files | read | Web |

Unknown vulnerability in Novell GroupWise and GroupWise WebAccess 6.0 through 6.5, when running with Apache Web Server 1.3 for NetWare where Apache is loaded using GWAPACHE.CONF, allows remote attackers to read directories and files on the server.


Novell iChain 2.3 includes the build number in

information | attackers | sensitive | server's | includes | headers | number | remote | allows | Novell | iChain | obtain | proxy | build | which | line | HTTP | VIA |

Novell iChain 2.3 includes the build number in the VIA line of the proxy server's HTTP headers, which allows remote attackers to obtain sensitive information.


The Mini FTP server in Novell iChain 2.2 and 2.

unauthenticated | attackers | earlier | command | obtain | allows | remote | Novell | server | iChain | full | path | Mini | PWD | via | SP2 | FTP |

The Mini FTP server in Novell iChain 2.2 and 2.3 SP2 and earlier allows remote unauthenticated attackers to obtain the full path of the server via the PWD command.


Heap-based buffer overflow in Novell Open Enter

Enterprise | Heap-based | overflow | Manager | Remote | Server | buffer | Novell | Open |

Heap-based buffer overflow in Novell Open Enterprise Server Remote Manager (novell-nrm) in Novell SUSE Linux Enterprise Server 9 allows remote attackers to execute arbitrary code via an HTTP POST request with a negative Content-Length parameter.


The SSL server implementation in NILE.NLM in No

implementation | Enterprise | NetWare | NILENLM | server | Novell | Open | SSL |

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) permits encryption with a NULL key, which results in cleartext communication that allows remote attackers to read an SSL protected session by sniffing network traffic.


The SSL server implementation in NILE.NLM in No

implementation | Enterprise | NetWare | NILENLM | server | Novell | Open | SSL |

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) sometimes selects a weak cipher instead of an available stronger cipher, which makes it easier for remote attackers to sniff and decrypt an SSL protected session.


The SSL server implementation in NILE.NLM in No

implementation | Enterprise | NetWare | NILENLM | server | Novell | Open | SSL |

The SSL server implementation in NILE.NLM in Novell NetWare 6.5 and Novell Open Enterprise Server (OES) allows a client to force the server to use weak encryption by stating that a weak cipher is required for client compatibility, which might allow remote attackers to decrypt contents of an SSL protected session.


Unspecified vulnerability in the HTTP proxy in

BorderManager | vulnerability | Unspecified | attackers | earlier | service | remote | denial | Novell | allows | cause | proxy | HTTP |

Unspecified vulnerability in the HTTP proxy in Novell BorderManager 3.8 and earlier allows remote attackers to cause a denial of service (CPU consumption and ABEND) via unknown attack vectors related to "media streaming over HTTP 1.1".


Novell iManager 2.5 and 2.0.2 allows remote att

iManager | Novell |

Novell iManager 2.5 and 2.0.2 allows remote attackers to cause a denial of service (crash) in the Tomcat server via a long TREE parameter in an HTTP POST, which triggers a NULL deference.


Multiple stack-based buffer overflows in Novell

stack-based | eDirectory | overflows | Multiple | before | buffer | Novell | 88x |

Multiple stack-based buffer overflows in Novell eDirectory 8.8.x before 8.8.1 FTF1, and 8.x up to 8.7.3.8, and Novell NetMail before 3.52e FTF2, allow remote attackers to execute arbitrary code via (1) a long HTTP Host header, which triggers an overflow in the BuildRedirectURL function; or vectors related to a username containing a . (dot) character in the (2) SMTP, (3) POP, (4) IMAP, (5) HTTP, or (6) Networked Messaging Application Protocol (NMAP) Netmail services.


Stack-based buffer overflow in webadmin.exe in

webadminexe | Stack-based | overflow | NetMail | Novell | buffer |

Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication.


Stack-based buffer overflow in the base64_decod

base64_decode | Stack-based | GWINTERexe | GroupWise | function | overflow | buffer | Novell |

Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess before 7.0 SP2 allows remote attackers to execute arbitrary code via long base64 content in an HTTP Basic Authentication request.


The Apache Web Server as used in Novell NetWare

information | HTTP-Header | GroupWise | attackers | sensitive | directive | modified | server's | internal | response | address | certain | NetWare | Apache | Novell | reveal | Server | obtain | remote | causes | allows | which | used | Web | via | may |

The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote attackers to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be modified, which may reveal the server's internal IP address.


Software vulnerabilities results 1 to 20 of 3742     
Page: 12345...188