CyberSec.Space Logo
Back to CVE Browser

CVE-2004-2314

HIGH
7.5
CVSS Severity Score
EPSS Score0.0600%
EPSS Percentile32.44th
PublishedDec 31, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

The Telnet listener for Novell iChain Server before 2.2 Field Patch 3b 2.2.116 does not have a password by default, which allows remote attackers to gain access.

Affected Platforms (CPE)

πŸ“¦
Novell

Ichain

<= 2.2

References & Advisories

πŸ”— http://www.ciac.org/ciac/bulletins/o-080.shtml
πŸ”— http://www.securitytracker.com/alerts/2004/Feb/1008961.html
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/15068
πŸ”— http://www.ciac.org/ciac/bulletins/o-080.shtml
πŸ”— http://www.securitytracker.com/alerts/2004/Feb/1008961.html
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/15068

Related Vulnerabilities

CVE-2005-074410.0

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1)...

CVE-2003-06367.5

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which al...

CVE-2019-59237.5

Directory traversal vulnerability in iChain Insurance Wallet App for iOS Version 1.3.0 and earlier allows remote attackers to read...

CVE-2003-06387.5

Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to caus...