CVE-2004-2104

Novell NetWare Enterprise Web Server 5.1-6.0 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-2104. PoCs published by Rafel Ivgi The-Insider.

AI-analyzed exploit summary This is a vulnerability writeup describing multiple issues in Novell Netware Enterprise Web Server, including XSS, information disclosure, and file loading vulnerabilities. It references a specific endpoint (/servlet/SnoopServlet) but does not include functional exploit code.

Description

Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to obtain sensitive server information, including the internal IP address, via a direct request to (1) snoop.jsp, (2) SnoopServlet, (3) env.bas, or (4) lcgitest.nlm.

Exploits (3)

exploitdb WRITEUP VERIFIED
by Rafel Ivgi The-Insider · textremotenetware
https://www.exploit-db.com/exploits/23588

This is a vulnerability writeup describing multiple issues in Novell Netware Enterprise Web Server, including XSS, information disclosure, and file loading vulnerabilities. It references a specific endpoint (/servlet/SnoopServlet) but does not include functional exploit code.

Classification
Writeup 90%
Attack Type
Xss | Info Leak | Other
Complexity
Trivial
Reliability
Theoretical
Target: Novell Netware Enterprise Web Server
No auth needed
Prerequisites: Network access to the vulnerable server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Rafel Ivgi The-Insider · textremotenetware
https://www.exploit-db.com/exploits/23587

The provided text describes multiple vulnerabilities in Novell Netware Enterprise Web Server, including XSS, information disclosure, and file loading issues. It references a specific JSP file as an example but does not contain executable exploit code.

Classification
Writeup 90%
Attack Type
Xss | Info Leak
Complexity
Trivial
Reliability
Theoretical
Target: Novell Netware Enterprise Web Server
No auth needed
Prerequisites: Access to the vulnerable web server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Rafel Ivgi The-Insider · textremotenetware
https://www.exploit-db.com/exploits/23586

This exploit demonstrates a cross-site scripting (XSS) vulnerability in Novell Netware Enterprise Web Server by injecting a VBScript payload via a crafted URL. The vulnerability allows arbitrary script execution in the context of the victim's browser.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Novell Netware Enterprise Web Server
No auth needed
Prerequisites: Access to a vulnerable Novell Netware Enterprise Web Server instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3720
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107487862304440&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/10711
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3721
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/4952
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/14921
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3722
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9479
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3715

Scores

EPSS 0.1194
EPSS Percentile 95.6%

Details

Status published
Products (2)
novell/netware 5.1
novell/netware 6.0
Published Dec 31, 2004
Tracked Since Feb 18, 2026