CVE-2004-2106 — Netware vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.2%

top 53.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Netware

Timeline

PublishedDec 31

Latest updateApr 29

Description

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to list directories via a direct request to (1) /com/, (2) /com/novell/, (3) /com/novell/webaccess, or (4) /ns-icons/.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDnovell/netware5.1, 6.0+1

🔴Vulnerability Details

GHSA

GHSA-f2f7-f9fj-mwqx: Novell NetWare Enterprise Web Server 5↗2022-04-29

▶

CVEList

CVE-2004-2106: Novell NetWare Enterprise Web Server 5↗2005-05-27

▶