Directory Traversal Vulnerability in Novell NetBasic Scripting Server
CVE-2002-1417

Currently unrated

Key Information:

Vendor: Novell
Status: Small Business Suite
Vendor: CVE Published:; 11 April 2003

Summary

A directory traversal vulnerability exists in the Novell NetBasic Scripting Server, affecting Netware versions 5.1 and 6, as well as Novell Small Business Suite versions 5.1 and 6. This flaw enables remote attackers to exploit the system by crafting a URL that includes a special sequence (..%5c), allowing them to access arbitrary files on the server. Such unauthorized access can lead to the disclosure of sensitive data, posing significant risks to the integrity and confidentiality of the affected systems.

References

http://archives.neohapsis.com/archives/bugtraq/2002-08/01...

mailing-listx_refsource_BUGTRAQ

http://support.novell.com/servlet/tidfinder/2963297

x_refsource_CONFIRM

http://www.iss.net/security_center/static/9910.php

vdb-entryx_refsource_XF

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 11, 2003
Vulnerability Reserved
Feb 5, 2003