Improper input validation in Novell Netware

CVE-2002-2433

NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote authenticated users to cause a denial of service (abend) via a crafted ABOR command.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.004 (60.0th percentile) — read the EPSS interpretation.

Affected products

Novell Netware — versions 6.5, 6.0, 5.1
Novell Netware_ftp_server — versions 5.02r, 5.01i, 5.02b
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

cve@mitre.org (x_refsource_CONFIRM)