FTP Server Vulnerability in Novell NetWare - NWFTPD.nlm Issues
CVE-2003-1596

Currently unrated

Key Information:

Vendor: Novell
Status: Netware Ftp Server; Netware
Vendor: CVE Published:; 5 April 2010

Summary

The FTP server component NWFTPD.nlm in Novell NetWare versions prior to 5.03.12 fails to adequately enforce filesystem restrictions for anonymous users utilizing NFS Gateway home directories. This oversight allows remote attackers to exploit FTP sessions to gain unauthorized access to restricted file system resources, potentially leading to significant data exposure and integrity issues.

References

http://www.novell.com/support/viewContent.do?externalId=3...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 5, 2010