Novell » Bordermanager : Security Vulnerabilities, CVEs, CVSS score >= 6

CVE-2007-5767

Heap-based buffer overflow in the Client Trust application (clntrust.exe) in Novell BorderManager 3.8 before Update 1.5 allows remote attackers to execute arbitrary code via a validation request in which the Novell tree name is not properly delimited with a wide-character backslash or NULL character.
Max CVSS
10.0
EPSS Score
41.79%
Published
2007-11-02
Updated
2011-03-08

CVE-2006-7155

Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.
Max CVSS
7.5
EPSS Score
4.23%
Published
2007-03-07
Updated
2017-07-29

CVE-2000-0651

The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the victim's machine.
Max CVSS
7.5
EPSS Score
0.47%
Published
2000-07-07
Updated
2017-10-10
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close