CVE-2003-0976 : NFS Server (XNFS.NLM) for Novell NetWare 6.5 does not properly enforce sys:\etc\

NFS Server (XNFS.NLM) for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS should deny the host.

Published 2003-12-15 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2003-0976

Novell » Netware » Version: 6.5
cpe:2.3:o:novell:netware:6.5:*:*:*:*:*:*:*
Matching versions
Novell » Netware » Version: 6.5 Update SP1
cpe:2.3:o:novell:netware:6.5:sp1:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2003-0976

EPSS FAQ

0.27%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 47 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2003-0976

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0976

https://exchange.xforce.ibmcloud.com/vulnerabilities/13915

Vulnerability Report
http://support.novell.com/cgi-bin/search/searchtid.cgi?/10089375.htm

Document Not Available
Patch;Vendor Advisory

Jump to

Vulnerability Details : CVE-2003-0976

Products affected by CVE-2003-0976

Exploit prediction scoring system (EPSS) score for CVE-2003-0976

CVSS scores for CVE-2003-0976

References for CVE-2003-0976