Vulnerability Description
NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories outside of the home server via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Netware Ftp Server | All versions |
| Novell | Netware | 6.5 |
Related Weaknesses (CWE)
References
- http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1Vendor Advisory
- https://bugzilla.novell.com/show_bug.cgi?id=272093
- http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1Vendor Advisory
- https://bugzilla.novell.com/show_bug.cgi?id=272093
FAQ
What is CVE-2007-6734?
CVE-2007-6734 is a vulnerability with a CVSS score of 4.0 (MEDIUM). NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5 SP7 does not properly implement the FTPREST.TXT NOREMOTE restriction, which allows remote authenticated users to access directories ou...
How severe is CVE-2007-6734?
CVE-2007-6734 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6734?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Netware Ftp Server, Novell Netware.