CVEブラウザに戻る

CVE-2003-0638

HIGH

7.5

CVSS Severity Score

EPSS Score0.0170%

EPSS Percentile32.84th

Published2003年8月27日

Last Modified2026年4月16日

Vulnerability Description

Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login."

Affected Platforms (CPE)

📦

Novell

Ichain

= 2.1

📦

Novell

Ichain

= 2.1

📦

Novell

Ichain

= 2.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=105492847631711&w=2

🔗 http://marc.info/?l=bugtraq&m=105492852131747&w=2

🔗 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm

🔗 http://marc.info/?l=bugtraq&m=105492847631711&w=2

🔗 http://marc.info/?l=bugtraq&m=105492852131747&w=2

🔗 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm

関連する脆弱性情報

CVE-2005-074410.0

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1)...

CVE-2003-06367.5

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which al...

CVE-2019-59237.5

Directory traversal vulnerability in iChain Insurance Wallet App for iOS Version 1.3.0 and earlier allows remote attackers to read...

CVE-2004-23147.5

The Telnet listener for Novell iChain Server before 2.2 Field Patch 3b 2.2.116 does not have a password by default, which allows r...