CVE-2004-2767

NWFTPD.nlm before 5.04.25 in the FTP server in Novell NetWare does not promptly close DS sessions, which allows remote attackers to cause a denial of service (connection slot exhaustion) by establishing many FTP sessions that persist for the lifetime of a DS session.

Published: Apr 5, 2010
Updated: Apr 13, 2023
CVE: CVE-2004-2767
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
novell / netware_ftp_server	-	-
novell / netware	-	-

http://www.novell.com/support/viewContent.do?externalId=3238588&sliceId=1

Vulnerability Database

289,599

CVE-2004-2767