CyberSec.Space Logo
Back to CVE Browser

CVE-2003-0638

HIGH
7.5
CVSS Severity Score
EPSS Score0.0170%
EPSS Percentile32.84th
PublishedAug 27, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login."

Affected Platforms (CPE)

πŸ“¦
Novell

Ichain

= 2.1
πŸ“¦
Novell

Ichain

= 2.1
πŸ“¦
Novell

Ichain

= 2.1

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=105492847631711&w=2
πŸ”— http://marc.info/?l=bugtraq&m=105492852131747&w=2
πŸ”— http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm
πŸ”— http://marc.info/?l=bugtraq&m=105492847631711&w=2
πŸ”— http://marc.info/?l=bugtraq&m=105492852131747&w=2
πŸ”— http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm

Related Vulnerabilities

CVE-2005-074410.0

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1)...

CVE-2003-06367.5

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which al...

CVE-2019-59237.5

Directory traversal vulnerability in iChain Insurance Wallet App for iOS Version 1.3.0 and earlier allows remote attackers to read...

CVE-2004-23147.5

The Telnet listener for Novell iChain Server before 2.2 Field Patch 3b 2.2.116 does not have a password by default, which allows r...