CVE-2002-2433

CWE-20 — Improper Input Validation3 documents3 sources

Severity

4.0MEDIUM

EPSS

0.4%

top 40.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Netware FTP Server Novell Netware

Timeline

PublishedApr 5

Latest updateApr 30

Description

NWFTPD.nlm before 5.03b in the FTP server in Novell NetWare allows remote authenticated users to cause a denial of service (abend) via a crafted ABOR command.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

▶NVDnovell/netware_ftp_server5.02y+7

▶NVDnovell/netware5.1, 6.0, 6.5+2

🔴Vulnerability Details

GHSA

GHSA-gq7c-wvh6-gx5q: NWFTPD↗2022-04-30

▶

CVEList

CVE-2002-2433: NWFTPD↗2010-04-05

▶