CVE-2008-5696 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2008-5696

Novell NetWare 6.5 before Support Pack 8, when an OES2 Linux server is installed into the NDS tree, does not require a password for the ApacheAdmin console, which allows remote attackers to reconfigure the Apache HTTP Server via console operations.

Published: Dec 19, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-5696
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-255

Affected Software
References

Software	From	Fixed in
novell / netware	6.5-sp6	6.5-sp6.x
novell / netware	-	6.5.x
novell / netware	6.5-sp3	6.5-sp3.x
novell / netware	6.5-sp1	6.5-sp1.x
novell / netware	6.5-sp2	6.5-sp2.x
novell / netware	6.5-sp1.1a	6.5-sp1.1a.x
novell / netware	6.5-sp4	6.5-sp4.x
novell / netware	6.5-sp1.1b	6.5-sp1.1b.x
novell / netware	6.5-sp5	6.5-sp5.x
novell / netware	6.5	6.5.x