FTP Server Vulnerability in Novell NetWare 6.5 SP7
CVE-2007-6734

Currently unrated

Key Information:

Vendor: Novell
Status: Netware Ftp Server; Netware
Vendor: CVE Published:; 5 April 2010

Summary

The FTP server component in Novell NetWare 6.5 SP7, specifically the NWFTPD.nlm prior to version 5.08.07, is vulnerable to improper implementation of the FTPREST.TXT NOREMOTE restriction. This allows remote authenticated users to bypass directory access limitations, potentially leading to unauthorized read or write access outside of their designated home directories through various unspecified vectors.

References

http://www.novell.com/support/viewContent.do?externalId=3...

x_refsource_CONFIRM

https://bugzilla.novell.com/show_bug.cgi?id=272093

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 5, 2010