Required CVE Record Information
Description
The Mini FTP server in Novell iChain 2.2 and 2.3 SP2 and earlier allows remote unauthenticated attackers to obtain the full path of the server via the PWD command.
References 7 Total
- marc.info: 20050315 [ISR] - Novell iChain Mini FTP Server Unauthorized Remote Path Disclosure Vulnerability mailing-list
- http://www.infobyte.com.ar/adv/ISR-03.html
- securitytracker.com: 1013407 vdb-entry
- secunia.com: 14537 third-party-advisory
- securityfocus.com: 12766 vdb-entry
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10096886.htm
- exchange.xforce.ibmcloud.com: ichain-path-disclosure(19643) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 7 Total
- marc.info: 20050315 [ISR] - Novell iChain Mini FTP Server Unauthorized Remote Path Disclosure Vulnerability mailing-listx_transferred
- http://www.infobyte.com.ar/adv/ISR-03.html x_transferred
- securitytracker.com: 1013407 vdb-entryx_transferred
- secunia.com: 14537 third-party-advisoryx_transferred
- securityfocus.com: 12766 vdb-entryx_transferred
- http://support.novell.com/cgi-bin/search/searchtid.cgi?/10096886.htm x_transferred
- exchange.xforce.ibmcloud.com: ichain-path-disclosure(19643) vdb-entryx_transferred