Vulnerability in Novell Netware

CVE-2007-6734

NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home server via unspecifie…

EPSS: 0.002 (36.6th percentile) — read the EPSS interpretation.

Affected products

Novell Netware — versions 6.5
Novell Netware_ftp_server
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM)