Page 7 of 66 results (0.007 seconds)

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 1

The xvesa code in Novell Netware 6.5 SP2 and SP3 allows remote attackers to redirect the xsession without authentication via a direct request to GUIMirror/Start. • http://securitytracker.com/id?1013460 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971038.htm http://www.securityfocus.com/bid/12831 •

CVSS: 5.0EPSS: 1%CPEs: 2EXPL: 3

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm. • https://www.exploit-db.com/exploits/23586 https://www.exploit-db.com/exploits/23587 https://www.exploit-db.com/exploits/23588 http://marc.info/?l=bugtraq&m=107487862304440&w=2 http://secunia.com/advisories/10711 http://www.osvdb.org/3715 http://www.osvdb.org/3720 http://www.osvdb.org/3721 http://www.osvdb.org/3722 http://www.osvdb.org/4952 http://www.securityfocus.com/bid/9479 https://exchange.xforce.ibmcloud.com/vulnerabilities/14921 •

CVSS: 5.0EPSS: 1%CPEs: 9EXPL: 0

Unknown vulnerability in Novell GroupWise and GroupWise WebAccess 6.0 through 6.5, when running with Apache Web Server 1.3 for NetWare where Apache is loaded using GWAPACHE.CONF, allows remote attackers to read directories and files on the server. • http://secunia.com/advisories/11119 http://support.novell.com/cgi-bin/search/searchtid.cgi?/10091330.htm http://www.securityfocus.com/bid/9864 http://www.securitytracker.com/alerts/2004/Mar/1009417.html https://exchange.xforce.ibmcloud.com/vulnerabilities/15467 •

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0

Cross-site scripting (XSS) vulnerability in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to process arbitrary script or HTML as other users via (1) a malformed request for a Perl program with script in the filename, (2) the User.id parameter to the webacc servlet, (3) the GWAP.version parameter to webacc, or (4) a URL request for a .bas file with script in the filename. • http://marc.info/?l=bugtraq&m=107487862304440&w=2 http://support.novell.com/cgi-bin/search/searchtid.cgi?/10091529.htm http://www.osvdb.org/4949 https://exchange.xforce.ibmcloud.com/vulnerabilities/14919 •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to (1) /com/, (2) /com/novell/, (3) /com/novell/webaccess, or (4) /ns-icons/. • http://marc.info/?l=bugtraq&m=107487862304440&w=2 http://www.osvdb.org/13402 http://www.osvdb.org/13403 http://www.osvdb.org/13404 https://exchange.xforce.ibmcloud.com/vulnerabilities/21749 •