VULHUB ™

The Netscape Enterprise Server for NetWare 4/5 includes an Admin feature that is vulnerable to denial of service attacks due to an unchecked buffer in admserv.nlm, in the login procedure. If a username longer than 310 characters is supplied, the Admin server crashes. Normal web serving functionalty is unaffected, but remote administration is not possible until the server is restarted. Note: The Enterprise Server for Netware is supported by Netware, not Netscape. Check the web pages in the credit section for more details.

The Netscape Enterprise Server for NetWare 4/5 includes an Admin feature that is vulnerable to denial of service attacks due to an unchecked buffer in admserv.nlm, in the login procedure. If a username longer than 310 characters is supplied, the Admin server crashes. Normal web serving functionalty is unaffected, but remote administration is not possible until the server is restarted. Note: The Enterprise Server for Netware is supported by Netware, not Netscape. Check the web pages in the credit section for more details.