Novell : Security Vulnerabilities, CVEs, Published In 2005 CVSS score >= 9
Multiple vulnerabilities in the OpenSSL ASN.1 parser, as used in Novell iManager 2.0.2, allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted packets, as demonstrated by "OpenSSL ASN.1 brute forcer." NOTE: this issue might overlap CVE-2004-0079, CVE-2004-0081, or CVE-2004-0112.
Max CVSS
9.3
EPSS Score
2.06%
Published
2005-12-31
Updated
2011-03-08
The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1) sniffing the connection on TCP port 51100 and replaying the authentication information or (2) obtaining and replaying the PCZQX02 authentication cookie from the browser.
Max CVSS
10.0
EPSS Score
0.55%
Published
2005-05-02
Updated
2017-07-11
2 vulnerabilities found