Next Page >>
Novell Netware
VULNERABILITY SUMMARY
A potential security vulnerability has been identified with HP Data Protector Express 3.x and 4.x and HP Data
Protector Express Single Server Edition (SSE) 3.x and 4.x running on supported Microsoft Windows, Linux, and
NetWare versions. The vulnerability could be exploited locally to create a Denial of Service (DoS) or to execute
arbitrary code.
References: CVE-2009-0714
Potential Security Impact: Local Denial of Service (DoS), execution of arbitrary code
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY
A potential security vulnerability has been identified with HP Data Protector Express 3.x and 4.x and HP Data Protector Express Single Server Edition (SSE) 3.x and 4.x running on supported Microsoft Windows, Linux, and NetWare versions. The vulnerability could be exploited locally to create a Denial of Service (DoS) or to execute arbitrary code.
References: CVE-2010-3007, ZDI-CAN 581
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP Data Protector Express 3.x and HP Data Protector Express SSE 3.x prior to build 56936
Potential Security Impact: Local Denial of Service (DoS), execution of arbitrary code
Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY
A potential security vulnerability has been identified with HP Data Protector Express 3.x and 4.x and HP Data Protector Express Single Server Edition (SSE) 3.x and 4.x running on supported Microsoft Windows, Linux, and NetWare versions. The vulnerability could be exploited locally to create a Denial of Service (DoS) or to execute arbitrary code.
References: CVE-2009-0714
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP Data Protector Express 3.x and HP Data Protector Express SSE 3.x prior to build 47065
#####################################################################################
Application: Novell Netware CIFS And AFP Remote Memory Consumption DoS
Platforms: Novell Netware 6.5 SP8
Crash: YES
Exploitation: Remote DoS
#####################################################################################
Application: Novell Netware FTP Remote Stack Overflow
Platforms: Novell Netware 6.5 SP8
Exploitation: Remote Code Execution
CVE Number: CVE-2010-0625
#####################################################################################
Application: Novell Netware OpenSSH Remote Stack Overflow
Platforms: Netware 6.5
Exploitation: Remote code execution
CVE Number:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ZDI-12-011 : Novell Netware XNFS caller_name xdrDecodeString Remote
Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-12-011
January 10, 2012
- -- CVE ID:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ZDI-12-006 : Novell Netware XNFS.NLM NFS Rename Remote Code Execution
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-12-006
January 5, 2012
- -- CVE ID:
ZDI-11-106: Novell Netware NWFTPD.NLM DELE Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-106
March 18, 2011
-- CVE ID:
CVE-2010-4228
-- CVSS:
ZDI-10-169: Novell Netware SSHD.NLM Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-169
September 1, 2010
-- CVSS:
9, (AV:N/AC:L/Au:S/C:C/I:C/A:C)
-- Affected Vendors:
Novell
ZDI-11-090: Novell Netware RPC XNFS xdrDecodeString Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-090
February 18, 2011
-- CVE ID:
CVE-2010-4227
-- CVSS:
ZDI-10-062: Novell Netware NWFTPD RMD/RNFR/DELE Argument Parsing Remote Code Execution Vulnerabilities
http://www.zerodayinitiative.com/advisories/ZDI-10-062
April 5, 2010
-- CVE ID:
CVE-2010-0625
-- Affected Vendors:
Novell
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
ZDI-12-007 : Novell Netware XNFS.NLM STAT Notify Remote Code Execution
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-12-007
January 5, 2012
- -- CVE ID:
ZDI-09-067: Novell NetWare NFS Portmapper and RPC Module Stack Overflow
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-067
September 30, 2009
-- Affected Vendors:
Novell
-- Affected Products:
Novell Netware
- Description
"Novell NetStorage acts as a bridge between a company's protected Novell network
and the Internet, providing protected file access from any Internet
location. Files
and folders on a Novell NetWare® 6.5 server or Novell Open Enterprise
Server can be
accessed using either a browser or via Network Neighborhood and Microsoft Web
Folders; no Novell Client^ software is required. Users can securely
access files
from any IP-enabled machine via Secure Sockets Layer (SSL) and Secure Hypertext
nSense Vulnerability Research Security Advisory NSENSE-2011-002
---------------------------------------------------------------
Affected Vendor: Novell
Affected Product: Netware, eDirectory
Platform: Netware / Linux
Impact: Remote Denial of Service
Vendor response: Patch
CVE: None
Credit: Knud / nSense
Jan 09, 2008
I. BACKGROUND
The Novell Client software provides a workstation with access to Novell
NetWare networks as well as Novell Open Enterprise Server (OES)
services. Novell Clients can access the full range of Novell services
such as authentication via Novell eDirectory, network browsing and
service resolution, and secure and reliable file system access. More
information about the Novel Client can be found on the vendor's web
site at the following URL.
ZDI-09-010: Novell Netware Groupwise GWIA RCPT Command Buffer Overflow
Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-010
February 2, 2009
-- Affected Vendors:
Novell
-- Affected Products:
Novell Netware
Nov 12, 2007
I. BACKGROUND
The Novell Client software provides a workstation with access to Novell
NetWare networks as well as Novell Open Enterprise Server (OES)
services. Novell Clients can access the full range of Novell services
such as authentication via Novell eDirectory, network browsing and
service resolution, and secure and reliable file system access. More
information about the Novel Client can be found on the vendor's site at
the following URL.
-- Affected Vendors:
Novell
-- Affected Products:
Novell Netware
-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Novell Netware. A valid IPC$ connection must
be established in order to exploit this vulnerability.
Affected Products:
CA ARCserve Backup r12.0 Windows
CA ARCserve Backup r11.5 Windows SP3 and prior*
CA ARCserve Backup r11.1 Windows*
CA ARCserve Backup r11.1 Netware*
CA Server Protection Suite r2
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server
Standard Edition r2
CA Business Protection Suite for Microsoft Small Business Server
ZDI-10-129: Novell Netware Groupwise Internet Gateway Remote Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-10-129
July 16, 2010
-- CVSS:
9, (AV:N/AC:L/Au:S/C:C/I:C/A:C)
-- Affected Vendors:
Novell
#####################################################################################
Application: Novell Groupwise Internet Agent Stack Overflow
Platforms: Windows, Linux, Netware (GroupWise 7.0, 7.01, 7.02,
7.03x, 7.04, 8.0, 8.01x)
Exploitation: Remote code execution
CVE Number:
#####################################################################################
Application: Novell Groupwise Webaccess Stack Overflow
Platforms: Windows, Linux & Netware (GroupWise 7.0, 7.01, 7.02,
7.03x, 7.04, 8.0, 8.01x)
Exploitation: Remote code execution
CVE Number:
-- Affected Vendor:
Novell
-- Affected Products:
Novell Netware Client
-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability by Digital Vaccine protection filter ID .
For further product information on the TippingPoint IPS:
-- Affected Vendor:
Novell
-- Affected Products:
Novell Netware Client
-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability since July 30, 2007 by Digital Vaccine protection
filter ID 5262, 5266. For further product information on the TippingPoint
===========
"Novell Client™ 4.91 for Windows XP is workstation software that brings an easy-to-use, secure,
and manageable networking environment to Windows XP and Windows 2003 users.
It enables you to access NetWare® services from Windows XP workstations or 2003 Windows servers,
and tightly integrates either product into your NetWare network. For example,
with Novell Client for Windows XP, you can browse through authorized NetWare directories,
transfer files, print documents and use advanced NetWare services directly from a Windows XP workstation or Windows Server 2003."
Aug 21, 2007
I. BACKGROUND
Trend Micro Inc.'s ServerProtect is an anti-virus software for Microsoft
Windows and Novell NetWare servers. It enables network administrators to
manage multiple deployments from a single management console. For more
information, please visit vendor's website at the following URL.
http://us.trendmicro.com/us/products/enterprise/serverprotect-for-microsoft-windows/index.html
- Norman Secuirty Suite
- Norman Network Protection
- Norman Virus Control for Lotus Domino
- Norman Virus Control for Exchange
- Norman Virus Control for Linux
- Norman Virus Control for Novell Netware (FireBreak)
- Norman Email Protection
- Norman Email Protection Appliance
- Norman Online Protection
- Norman Virus Control for AMaViS
- Norman Virus Control for MIMEsweeper
Aug 21, 2007
I. BACKGROUND
Trend Micro Inc.'s ServerProtect is an anti-virus software for Microsoft
Windows and Novell NetWare servers. It enables network administrators to
manage multiple deployments from a single management console. For more
information, please visit vendor's website at the following URL.
http://us.trendmicro.com/us/products/enterprise/serverprotect-for-microsoft-windows/index.html
Next Page>>
|
