Description
Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a different vulnerability than CVE-2010-0625.4.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Francis Provencher · pythondosnetware
https://www.exploit-db.com/exploits/17020
References (8)
Core 8
Core References
Exploit x_refsource_misc
http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=25&Itemid=25
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43824
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/8149
Issue Tracking x_refsource_confirm
https://bugzilla.novell.com/show_bug.cgi?id=641249
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/46922
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/66170
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-11-106/
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/viewContent.do?externalId=3238588
Scores
EPSS
0.2482
EPSS Percentile
96.2%
Details
CWE
CWE-119
Status
published
Products (3)
novell/netware
5.1
novell/netware
6.0
novell/netware
6.5
Published
Mar 22, 2011
Tracked Since
Feb 18, 2026