Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-1436Netware vulnerability

5 documents5 sources
Severity
7.5HIGHNVD
EPSS
65.0%
top 1.52%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Novell Netware
Timeline
PublishedApr 11
Latest updateApr 30

Description

The web handler for Perl 5.003 on Novell NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary Perl code via an HTTP POST request.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDnovell/netware5.1, 6.0+1

Patches

Patch: archives.neohapsis.comPatch: www.iss.netPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-8c6w-wcvf-rjjf: The web handler for Perl 52022-04-30
CVEList
CVE-2002-1436: The web handler for Perl 52004-09-01

💥Exploits & PoCs

1
Exploit-DB
Novell NetWare 5.1/6.0 - POST Arbitrary Perl Code Execution2002-08-20

🔍Detection Rules

1
Suricata
GPL WEB_SERVER perl post attempt2010-09-23
CVE-2002-1436 — Novell Netware vulnerability | cvebase