Unrated severityNVD Advisory· Published Apr 11, 2003· Updated Apr 16, 2026

CVE-2002-1417

Description

Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6, and Novell Small Business Suite 5.1 and 6, allows remote attackers to read arbitrary files via a URL containing a "..%5c" sequence (modified dot-dot), which is mapped to the directory separator.

Affected products

Novell/Small Business Suite2 versions
cpe:2.3:a:novell:small_business_suite:5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:novell:small_business_suite:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:novell:small_business_suite:6.0:*:*:*:*:*:*:*
Novell/Netware2 versions
cpe:2.3:o:novell:netware:5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:novell:netware:5.1:*:*:*:*:*:*:*
- cpe:2.3:o:novell:netware:6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2002-08/0199.htmlnvdPatchVendor Advisory
www.iss.net/security_center/static/9910.phpnvdPatchVendor Advisory
www.securityfocus.com/bid/5523nvdPatchVendor Advisory
support.novell.com/servlet/tidfinder/2963297nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.011
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000