National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • CPE Product Version: cpe:/a:novell:bordermanager:3.8
There are 5 matching records.
Vuln ID Summary CVSS Severity
CVE-2007-5767

Heap-based buffer overflow in the Client Trust application (clntrust.exe) in Novell BorderManager 3.8 before Update 1.5 allows remote attackers to execute arbitrary code via a validation request in which the Novell tree name is not properly delimited with a wide-character backslash or NULL character.

Published: November 02, 2007; 07:46:00 PM -04:00
    V2: 10.0 HIGH
CVE-2006-7155

Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.

Published: March 07, 2007; 03:19:00 PM -05:00
    V2: 7.5 HIGH
CVE-2006-5286

Unspecified vulnerability in IKE.NLM in Novell BorderManager 3.8 allows attackers to cause a denial of service (crash) via unknown attack vectors related to "VPN issues" for certain "IKE and IPsec settings."

Published: October 13, 2006; 03:07:00 PM -04:00
    V2: 5.0 MEDIUM
CVE-2006-1218

Unspecified vulnerability in the HTTP proxy in Novell BorderManager 3.8 and earlier allows remote attackers to cause a denial of service (CPU consumption and ABEND) via unknown attack vectors related to "media streaming over HTTP 1.1".

Published: March 13, 2006; 09:02:00 PM -05:00
    V2: 5.0 MEDIUM
CVE-2004-1457

The Virtual Private Network (VPN) capability in Novell Bordermanager 3.8 allows remote attackers to cause a denial of service (ABEND in IKE.NLM) via a malformed IKE packet, as sent by the Striker ISAKMP Protocol Test Suite.

Published: December 31, 2004; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM