NWFTPD.nlm in the FTP server in Novell NetWare 6.0 before SP4 and 6.5 before SP1 does not enforce domain-name login restrictions, which allows remote attackers to bypass intended access control via an FTP connection.
Software | From | Fixed in |
---|---|---|
novell / netware | 6.0 | 6.0.x |
novell / netware | 6.0-sp1 | 6.0-sp1.x |
novell / netware | 6.0-sp2 | 6.0-sp2.x |
novell / netware | 6.0-sp3 | 6.0-sp3.x |
novell / netware | 6.5 | 6.5.x |
novell / netware_ftp_server | - | - |