CVE Details for CVE: CVE-2002-1634
Summary
Novell NetWare 5.1 installs sample applications that allow remote attackers to obtain sensitive information via (1) ndsobj.nlm, (2) allfield.jse, (3) websinfo.bas, (4) ndslogin.pl, (5) volscgi.pl, (6) lancgi.pl, (7) test.jse, or (8) env.pl.
| Timestamps | |
|---|---|
| Last major update | 11-07-2017 - 01:29 |
| Published | 31-12-2002 - 05:00 |
| Last modified | 11-07-2017 - 01:29 |
References
- http://www.procheckup.com/security_info/vuln_pr0201.html
- http://www.procheckup.com/security_info/vuln_pr0203.html
- http://www.securityfocus.com/advisories/4158
- http://www.securityfocus.com/advisories/4157
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10064452.htm
- http://www.kb.cert.org/vuls/id/159203
- http://www.securityfocus.com/bid/4874
- http://www.osvdb.org/17461
- http://www.osvdb.org/17462
- http://www.osvdb.org/17463
- http://www.osvdb.org/17464
- http://www.osvdb.org/17465
- http://www.osvdb.org/17466
- http://www.osvdb.org/17467
- http://www.osvdb.org/17468
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9212
CWE
CVSS
Base
5.0
Impact
2.9
Exploitability
10.0
Access
| Vector | Complexity | Authentication |
|---|---|---|
| NETWORK | LOW | NONE |
Impact
| Confidentiality | Integrity | Availability |
|---|---|---|
| PARTIAL | NONE | NONE |
CVSS3
None
VIA4 references
cvss-vector
via4
refmap
via4
| bid | 4874 |
| cert-vn | VU#159203 |
| confirm | http://support.novell.com/cgi-bin/search/searchtid.cgi?/10064452.htm |
| misc | |
| osvdb | |
| xf | netware-sample-information-disclosure(9212) |