CVE-2000-0651

The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow remote attackers to impersonate another user by replaying the authentication requests and responses from port 3024 of the victim's machine.

Published: Jul 7, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-0651
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
novell / bordermanager	3.0	3.0.x
novell / bordermanager	3.5	3.5.x

http://www.securityfocus.com/bid/1440
http://www.securityfocus.com/templates/archive.pike?list=1&msg=06256915.00591E18.00@uprrsmtp2.notes.up.com
http://www.securityfocus.com/templates/archive.pike?list=1&msg=06256915.00591E18.00%40uprrsmtp2.notes.up.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/5186

Vulnerability Database

CVE-2000-0651