Novell : Security Vulnerabilities, CVEs, Published In 2003 CVSS score >= 7
Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script."
Max CVSS
10.0
EPSS Score
0.50%
Published
2003-12-31
Updated
2017-08-08
Buffer overflow in the portmapper service (PMAP.NLM) in Novell NetWare 6 SP3 and ZenWorks for Desktops 3.2 SP2 through 4.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors.
Max CVSS
7.5
EPSS Score
12.61%
Published
2003-10-27
Updated
2017-07-11
NFS Server (XNFS.NLM) for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS should deny the host.
Max CVSS
7.5
EPSS Score
0.24%
Published
2003-12-15
Updated
2017-07-11
Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login."
Max CVSS
7.5
EPSS Score
0.82%
Published
2003-08-27
Updated
2016-10-18
Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites.
Max CVSS
7.5
EPSS Score
0.17%
Published
2003-08-27
Updated
2008-09-05
Novell eDirectory (eDir) 8.6.2 and Netware 5.1 eDir 85.x allows users with expired passwords to gain inappropriate permissions when logging in from Remote Manager.
Max CVSS
7.5
EPSS Score
0.59%
Published
2003-03-31
Updated
2017-10-10
The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary Perl code via an HTTP POST request.
Max CVSS
7.5
EPSS Score
7.57%
Published
2003-04-11
Updated
2008-09-05
RCONAG6 for Novell Netware SP2, while running RconJ in secure mode, allows remote attackers to bypass authentication using the RconJ "Secure IP" (SSL) option during a connection.
Max CVSS
7.5
EPSS Score
1.65%
Published
2003-04-11
Updated
2008-09-05
8 vulnerabilities found