Novell : Security Vulnerabilities, CVEs, Published In 1999 CVSS score >= 5
NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-12-31
Updated
2016-10-18
Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.05%
Published
1999-12-31
Updated
2008-09-05
Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls.
Max CVSS
10.0
EPSS Score
0.23%
Published
1999-07-15
Updated
2016-10-18
Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter.
Max CVSS
5.0
EPSS Score
0.21%
Published
1999-12-19
Updated
2016-10-18
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
Max CVSS
5.0
EPSS Score
4.02%
Published
1999-12-19
Updated
2016-10-18
Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests.
Max CVSS
5.0
EPSS Score
0.16%
Published
1999-06-16
Updated
2022-08-17
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.
Max CVSS
5.0
EPSS Score
0.38%
Published
1999-04-09
Updated
2008-09-09
7 vulnerabilities found