Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise 6.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0296
NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parame...
Novell Groupwise 6.0
Novell Groupwise Webaccess 6.5
Novell Groupwise 6.5
Novell Groupwise Webaccess 6.0
NA
CVE-2005-2620
grpWise.exe for Novell GroupWise client 5.5 up to and including 6.5.2 stores the password in plaintext in memory, which allows malicious users to obtain the password using a debugger or another mechanism to read process memory.
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.2
NA
CVE-2009-0273
Multiple cross-site scripting (XSS) vulnerabilities in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) User.id and (2) Library.queryText parameters to gw/webacc, and other v...
Novell Groupwise 6.5
Novell Groupwise 7.02x
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.01
Novell Groupwise 7.03
NA
CVE-2009-0272
Cross-site request forgery (CSRF) vulnerability in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allows remote malicious users to insert e-mail forwarding rules, and modify unspecified other configuration settings, as arbitrary users via unknown vecto...
Novell Groupwise 6.5
Novell Groupwise 7.02x
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.01
Novell Groupwise 7.03
NA
CVE-2009-0274
Unspecified vulnerability in WebAccess in Novell GroupWise 6.5, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 might allow remote malicious users to obtain sensitive information via a crafted URL, related to conversion of POST requests to GET requests.
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.02x
Novell Groupwise 6.5
Novell Groupwise 7.01
NA
CVE-2009-0410
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote malicious users to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.
Novell Groupwise 6.5
Novell Groupwise 7.02x
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.01
1 EDB exploit
NA
CVE-2007-3571
The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote malicious users to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be modified, which may reveal the server's internal IP address.
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 7.0
Novell Groupwise 6.0.1
Novell Groupwise 6.5.4
NA
CVE-2006-3268
Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain "random programmatic access" to other email within the same post office.
Novell Groupwise 5.2
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 7.0
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.4
Novell Groupwise
NA
CVE-2007-2513
Novell GroupWise 7 before SP2 20070524, and GroupWise 6 prior to 6.5 post-SP6 20070522, allows remote malicious users to obtain credentials via a man-in-the-middle attack.
Novell Groupwise 6.5
Novell Groupwise 7.0
NA
CVE-2008-1330
Unspecified vulnerability in the Windows client API in Novell GroupWise 7 before SP3 and 6.5 before SP6 Update 3 allows remote authenticated users to access the non-shared stored e-mail messages of another user who has shared at least one folder with the attacker.
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5
Novell Groupwise 6.5.7
Novell Groupwise 7.0.0
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 6.5 Sp6 Update 1
Novell Groupwise 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »