CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1320
https://notcve.org/view.php?id=CVE-1999-1320
31 Dec 1999 — Vulnerability in Novell NetWare 3.x and earlier allows local users to gain privileges via packet spoofing. • http://ciac.llnl.gov/ciac/bulletins/d-01.shtml •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1382
https://notcve.org/view.php?id=CVE-1999-1382
31 Dec 1999 — NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program. • http://marc.info/?l=bugtraq&m=88427711321769&w=2 •
CVSS: 10.0EPSS: 1%CPEs: 3EXPL: 1CVE-1999-1086
https://notcve.org/view.php?id=CVE-1999-1086
15 Jul 1999 — Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls. • http://marc.info/?l=bugtraq&m=93214475111651&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-1999-0929
https://notcve.org/view.php?id=CVE-1999-0929
16 Jun 1999 — Novell NetWare with Novell-HTTP-Server or YAWN web servers allows remote attackers to conduct a denial of service via a large number of HTTP GET requests. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0929 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-1999-0470 – Novell Netware 4.1/4.11 - SP5B Remote.NLM Weak Encryption
https://notcve.org/view.php?id=CVE-1999-0470
09 Apr 1999 — A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted. • https://www.exploit-db.com/exploits/19364 •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 2CVE-1999-1020 – Novell Netware 4.1/4.11 - SP5B NDS Default Rights
https://notcve.org/view.php?id=CVE-1999-1020
18 Sep 1998 — The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE. • https://www.exploit-db.com/exploits/19365 •
CVSS: 4.0EPSS: 0%CPEs: 14EXPL: 1CVE-1999-0524
https://notcve.org/view.php?id=CVE-1999-0524
01 Aug 1997 — ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts. Información ICMP como (1) máscara de red y (2) marca de tiempo está permitida desde hosts arbitrarios. • https://github.com/threatlabindonesia/CVE-1999-0524-ICMP-Timestamp-and-Address-Mask-Request-Exploit • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0265
https://notcve.org/view.php?id=CVE-1999-0265
01 Jan 1997 — ICMP redirect messages may crash or lock up a host. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ154174 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-1999-1215
https://notcve.org/view.php?id=CVE-1999-1215
16 Sep 1993 — LOGIN.EXE program in Novell Netware 4.0 and 4.01 temporarily writes user name and password information to disk, which could allow local users to gain privileges. • http://ciac.llnl.gov/ciac/bulletins/d-21.shtml •