Vulnerability Note VU#746251
Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection
Novell Netware RCONAG6 allows users to gain access to the server without a password.
Novell Netware RCONAG6 allows users to remotely administer a Novell host. A vulnerability in RCONAG6 makes it possible for a remote user to connect to the server without supplying a password for authentication. For further details, please see the Novell Advisory.
A remote user can gain access to the Novell host.
Apply a patch.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Novell||Affected||-||22 Aug 2002|
CVSS Metrics (Learn More)
Thanks to Ed Reed for reporting this vulnerability.
This document was written by Ian A Finlay.
- CVE IDs: Unknown
- Date Public: 21 Aug 2002
- Date First Published: 22 Aug 2002
- Date Last Updated: 22 Aug 2002
- Severity Metric: 13.50
- Document Revision: 2
If you have feedback, comments, or additional information about this vulnerability, please send us email.