| |
Vulnerability CVE-2007-6734
Published: 2010-04-05 Modified: 2012-02-12
| Description: |
NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home server via unspecified vectors. |
Type:
CWE-264 (Permissions, Privileges, and Access Controls)
CVSS2 => (AV:N/AC:L/Au:S/C:P/I:N/A:N)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
4/10 |
2.9/10 |
8/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
Single time |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
None |
None |
References: |
https://bugzilla.novell.com/show_bug.cgi?id=272093
http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
