Denial of Service Vulnerability in Novell NetWare FTP Server
CVE-2004-2767

Currently unrated

Key Information:

Vendor: Novell
Status: Netware Ftp Server; Netware
Vendor: CVE Published:; 5 April 2010

Summary

The FTP server in Novell NetWare prior to version 5.04.25 is susceptible to a Denial of Service condition when it fails to close Directory Services (DS) sessions promptly. This flaw allows remote attackers to exhaust connection slots by establishing multiple persistent FTP sessions. As these sessions remain open for the duration of a DS session, it can lead to service disruptions for legitimate users by filling available connection slots and denying further sessions.

References

http://www.novell.com/support/viewContent.do?externalId=3...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 5, 2010