CVE-2007-6735
First published: Mon Apr 05 2010(Updated: )
NWFTPD.nlm before 5.08.06 in the FTP server in Novell NetWare does not properly handle partial matches for container names in the FTPREST.TXT file, which allows remote attackers to bypass intended access restrictions via an FTP session.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Novell NetWare FTP Server | ||
| Novell NetWare FTP Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-6735?
CVE-2007-6735 has been classified as a medium severity vulnerability that can allow remote attackers to bypass security restrictions.
How do I fix CVE-2007-6735?
To fix CVE-2007-6735, it's recommended to upgrade the NWFTPD.nlm to version 5.08.06 or later.
Who is affected by CVE-2007-6735?
CVE-2007-6735 affects users of Novell NetWare and the Novell NetWare FTP Server prior to version 5.08.06.
What attacks can be performed using CVE-2007-6735?
Attackers can exploit CVE-2007-6735 to bypass access restrictions, allowing unauthorized FTP access to system files.
Is CVE-2007-6735 still a concern for current systems?
CVE-2007-6735 primarily affects older versions of Novell NetWare; however, any unresolved systems still using these versions may be at risk.
- collector/nvd-historical
- agent/references
- agent/type
- agent/softwarecombine
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/novell
- canonical/novell netware ftp server