CVE-2010-0625

Currently unrated

Key Information:

Vendor: Novell
Status: Netware Ftp Server; Netware
Vendor: CVE Published:; 5 April 2010

Summary

Stack-based buffer overflow in NWFTPD.nlm before 5.10.01 in the FTP server in Novell NetWare 5.1 through 6.5 SP8 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long (1) MKD, (2) RMD, (3) RNFR, or (4) DELE command.

References

http://www.novell.com/support/viewContent.do?externalId=3...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2010/0742

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/archive/1/510557/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 5, 2010
Vulnerability Reserved
Feb 11, 2010

Collectors

NVD DatabaseMitre Database