Title: Novell Netware Print Server Passwordless Account Vulnerability
Severity: MODERATE
Description:
Netware is a Network Operating System distributed and maintained by Novell Incorporated. It is designed to offer a secure network environment with strict access control.
A problem in the default installations of Novell Netware could result in a user gaining access to network resources. This problem is the result of the default installation of Novell Netware.
After installing a fresh installation of Netware, users for various tasks are created. One such user is the printer user. The printer user is the user allocated to printing resources on the network, and has a privileges of the container the user is assigned to.
The default installation of Netware does not assign a password for the Novell printer user. Therefore, it is possible for a user with no access to the Netware network to gain access by signing in as the printer user.
This configuration issue is discussed in the Novell Netware documentation, and the reccommendation to set a password for the printer user is made.
Affected Products:
- Novell Netware 3.1.0
- Novell Netware 3.1.2
- Novell Netware 4.1.0
- Novell Netware 4.1.1
- Novell Netware 4.11.0
- Novell Netware 5.0.0
- Novell Netware 5.1.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
