CVE-1999-1020

Published Sep 18, 1998

Last updated 7 years ago

Overview

Description: The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:novell:netware:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01439E99-85F3-47B6-802A-909B737071D2"
          },
          {
            "criteria": "cpe:2.3:o:novell:netware:4.11:sp5b:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "063118A6-F4AA-4D3C-865C-DCD0F3623EF2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References