CyberSec.Space Logo
Back to CVE Browser

CVE-1999-1086

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0560%
EPSS Percentile15.45th
PublishedJul 15, 1999
Last ModifiedApr 16, 2026

Vulnerability Description

Novell 5 and earlier, when running over IPX with a packet signature level less than 3, allows remote attackers to gain administrator privileges by spoofing the MAC address in IPC fragmented packets that make NetWare Core Protocol (NCP) calls.

Affected Platforms (CPE)

πŸ’»
Novell

Netware

<= 5.0
πŸ’»
Novell

Netware

= 4.1
πŸ’»
Novell

Netware

= 4.11

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=93214475111651&w=2
πŸ”— http://www.securityfocus.com/bid/528
πŸ”— http://marc.info/?l=bugtraq&m=93214475111651&w=2
πŸ”— http://www.securityfocus.com/bid/528

Related Vulnerabilities

CVE-2003-159510.0

NWFTPD.nlm before 5.04.05 in the FTP server in Novell NetWare 6.5 does not properly perform "intruder detection," which has unspec...

CVE-2000-079310.0

Norton AntiVirus 5.00.01C with the Novell Netware client does not properly restart the auto-protection service after the first use...

CVE-1999-036110.0

NetWare version of LaserFiche stores usernames and passwords unencrypted, and allows administrative changes without logging.

CVE-2004-273410.0

webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase direct...