CVE-2002-1417

Currently unrated

Key Information:

Vendor: Novell
Status: Small Business Suite
Vendor: CVE Published:; 11 April 2003

Summary

Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL containing a "..%5c" sequence (modified dot-dot), which is mapped to the directory separator.

References

http://archives.neohapsis.com/archives/bugtraq/2002-08/01...

mailing-listx_refsource_BUGTRAQ

http://support.novell.com/servlet/tidfinder/2963297

x_refsource_CONFIRM

http://www.iss.net/security_center/static/9910.php

vdb-entryx_refsource_XF

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 11, 2003
Vulnerability Reserved
Feb 5, 2003

Collectors

NVD DatabaseMitre Database