Novell Home

My Favorites

Close

Please to see your favorites.

Potential Security Vulnerability with Apache on NetWare 6.5 after installing OES2 Linux Server

This document (7001907) is provided subject to the disclaimer at the end of this document.

Environment

Novell Apache on NetWare 2.0.48
Novell NetWare 6.5 Support Pack 7
Novell NetWare 6.5 Support Pack 6
Novell NetWare 6.5 Support Pack 5

Situation

After installing an OES2 Linux server into a tree that is already running on NetWare 6.5, it is possible to access the ApacheAdmin console on NetWare without using a password.

NOTE:  Generally this problem is only seen when the NetWare server has been upgraded from an earlier version of NetWare 6.5 (i.e. Support Pack 2, Support Pack 3, etc.) to Support Pack 7. 

Resolution

The fix to this issue is to apply support pack 8 to the server.

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7001907
  • Creation Date:17-NOV-08
  • Modified Date:26-APR-12
    • NovellNetWare

Did this document solve your problem? Provide Feedback