Vulnerability Description
The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Netware | 4.1 |
References
- http://marc.info/?l=bugtraq&m=90613355902262&w=2
- http://www.securityfocus.com/bid/484ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1364
- http://marc.info/?l=bugtraq&m=90613355902262&w=2
- http://www.securityfocus.com/bid/484ExploitPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1364
FAQ
What is CVE-1999-1020?
CVE-1999-1020 is a vulnerability with a CVSS score of 7.5 (HIGH). The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and r...
How severe is CVE-1999-1020?
CVE-1999-1020 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1020?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Netware.