CVE-2003-0976 — Netware vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 49.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Netware

Timeline

PublishedDec 15

Latest updateApr 29

Description

NFS Server (XNFS.NLM) for Novell NetWare 6.5 does not properly enforce sys:\etc\exports when hostname aliases from sys:etc\hosts file are used, which could allow users to mount file systems when XNFS should deny the host.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDnovell/netware6.5

Patches

Patch: support.novell.com ↗Patch: support.novell.com ↗

🔴Vulnerability Details

GHSA

GHSA-xv9v-2g4q-cq6q: NFS Server (XNFS↗2022-04-29

▶

CVEList

CVE-2003-0976: NFS Server (XNFS↗2003-12-10

▶