Potential Security Vulnerabilities Reported in Novell NetStorage

  • Document ID:7003053
  • Creation Date:20-Apr-2009
  • Modified Date:26-Apr-2012
    • Micro Focus Products:
      NetStorage

Environment

Novell NetStorage

Situation

Three potential security vulnerabilities may exist in Novell NetStorage
 
1. A Cross-Site Scripting vulnerability was reported which affects both NetWare and OES Linux on OES, OES2, and OES2 Support Pack 1
2. A File Path disclosure may exist when using the mail option which affects both NetWare and OES Linux on OES, OES2, and OES2 Support Pack 1
3. A potential Denial of Service attack may exist, currently, this has only been seen on NetWare.
 
 

Resolution

The patch has been released on the download.novell.com site