CVE-1999-1020

high

Description

The installation of Novell Netware NDS 5.99 provides an unauthenticated client with Read access for the tree, which allows remote attackers to access sensitive information such as users, groups, and readable objects via CX.EXE and NLIST.EXE.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/1364

http://www.securityfocus.com/bid/484

http://marc.info/?l=bugtraq&m=90613355902262&w=2

Details

Source: Mitre, NVD

Published: 1998-09-18

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.01659