Last Modified: Sept. 5, 2008
The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen.
Access Vector: Local
Access Complexity: Low
Authentication: None
Confidentiality Impact: Partial
Integrity Impact: None
Availability Impact: None
Base Score: 2.1
Exploitability Score: 3.9
Impact Score: 2.9
CVSS V2: AV:L/AC:L/Au:N/C:P/I:N/A:N
NVD-CWE-Other
| Condition | Configuration | |
|---|---|---|
| OR | ||
| OR | ||
| cpe:2.3:o:novell:netware:*:*:*:*:*:*:*:* Part: o Vendor: novell | Alle Schwachstellen für novell | |
<?xml version="1.0" ?>
<set operator="and">
<set operator="or">
<prop key="operating_system" value="cpe:2.3:o:novell:netware:*:*:*:*:*:*:*:*"/>
</set>
<prop key="program_influence" value="input"/>
<prop key="range" value="local"/>
</set>
<?xml version="1.0" ?>
<set operator="and">
<set operator="or">
<prop key="operating_system" value="cpe:2.3:o:novell:netware:*:*:*:*:*:*:*:*"/>
</set>
<prop key="program_influence" value="input"/>
<prop key="data" value="any"/>
<prop key="data_influence" value="read"/>
<prop key="range" value="local"/>
</set>