Buffer overflow in Novell Netware

CVE-2003-1592

Multiple buffer overflows in NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 allow remote attackers to cause a denial of service (abend) via a long (1) username or (2) password.

Vulnerability class: Buffer Overflow

EPSS: 0.007 (71.5th percentile) — read the EPSS interpretation.

Affected products

Novell Netware — versions 6.5, 6.0
Novell Netware_ftp_server
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)