| Vulnerability Name: | CVE-2002-2083 (CCN-29878) | ||||||||
| Assigned: | 2002-01-11 | ||||||||
| Published: | 2002-01-11 | ||||||||
| Updated: | 2008-09-05 | ||||||||
| Summary: | The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen. | ||||||||
| CVSS v3 Severity: | 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N) 1.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:U/RC:UR)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:U/RC:UR)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||
| References: | Source: BUGTRAQ Type: UNKNOWN 20020111 Novell Netware Login "bypass" to execute programs Source: CCN Type: BugTraq Mailing List, Fri Jan 11 2002 - 12:45:15 CST From: Philip Wagenaar (PB.WagenaarChello.NL) Source: MITRE Type: CNA CVE-2002-2083 Source: CCN Type: OSVDB ID: 59688 Novell NetWare Client on Windows Help Feature Login Authentication Bypass Source: XF Type: UNKNOWN netware-help-auth-bypass(29878) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||