CVE-2002-1772 — Netware vulnerability

3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.0%

top 91.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Netware

Timeline

PublishedDec 31

Latest updateApr 30

Description

Novell Netware 5.0 through 5.1 may allow local users to gain "Domain Admin" rights by logging into a Novell Directory Services (NDS) account, and executing "net use" on an NDS_ADM account that is not in the NT domain but has domain access rights, which allows the user to enter a null password.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDnovell/netware5.0, 5.1+1

🔴Vulnerability Details

GHSA

GHSA-9cx3-wq6r-qvm7: Novell Netware 5↗2022-04-30

▶

CVEList

CVE-2002-1772: Novell Netware 5↗2005-06-21

▶