Vulnerability in Novell Netware

CVE-2003-1594

NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly enforce FTPREST.TXT settings, which allows remote attackers to bypass intended access restrictions via an FTP session.

EPSS: 0.001 (33.0th percentile) — read the EPSS interpretation.

Affected products

Novell Netware — versions 6.5
Novell Netware_ftp_server
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)