Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise 7.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0272
Cross-site request forgery (CSRF) vulnerability in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allows remote malicious users to insert e-mail forwarding rules, and modify unspecified other configuration settings, as arbitrary users via unknown vecto...
Novell Groupwise 6.5
Novell Groupwise 7.02x
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.01
Novell Groupwise 7.03
NA
CVE-2009-1634
The WebAccess component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 does not properly implement session management mechanisms, which allows remote malicious users to gain access to user accounts via unspecified vectors.
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0.0
Novell Groupwise 7.0.2
1 EDB exploit
NA
CVE-2009-0274
Unspecified vulnerability in WebAccess in Novell GroupWise 6.5, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 might allow remote malicious users to obtain sensitive information via a crafted URL, related to conversion of POST requests to GET requests.
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.02x
Novell Groupwise 6.5
Novell Groupwise 7.01
NA
CVE-2009-0410
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote malicious users to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.
Novell Groupwise 6.5
Novell Groupwise 7.02x
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.01
1 EDB exploit
NA
CVE-2009-0273
Multiple cross-site scripting (XSS) vulnerabilities in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) User.id and (2) Library.queryText parameters to gw/webacc, and other v...
Novell Groupwise 6.5
Novell Groupwise 7.02x
Novell Groupwise 8.0
Novell Groupwise 7.0
Novell Groupwise 7.01
Novell Groupwise 7.03
NA
CVE-2006-4220
Multiple cross-site scripting (XSS) vulnerabilities in webacc in Novell GroupWise WebAccess prior to 7 Support Pack 3 Public Beta allow remote malicious users to inject arbitrary web script or HTML via the (1) User.html, (2) Error, (3) User.Theme.index, and (4) and User.lang para...
Novell Groupwise 6.5.7
Novell Groupwise 7.0.0
Novell Groupwise Webaccess
Novell Groupwise 7.0
Novell Groupwise 5.57e
1 EDB exploit
NA
CVE-2009-1636
Multiple buffer overflows in the Internet Agent (aka GWIA) component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 allow remote malicious users to execute arbitrary code via (1) a crafted e-mail address in an SMTP session or (2) an SMTP command.
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 7.03
Novell Groupwise 7.01
Novell Groupwise 7.0.0
Novell Groupwise 7.0.3
Novell Groupwise 8.0
NA
CVE-2009-1762
Multiple cross-site scripting (XSS) vulnerabilities in the WebAccess login page (aka gw/webacc) in Novell GroupWise 7.x prior to 7.03 HP2 allow remote malicious users to inject arbitrary web script or HTML via the (1) GWAP.version or (2) User.Theme (aka User.Theme.index) paramete...
Novell Groupwise 7.01
Novell Groupwise 7.02x
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 7.0.2
Novell Groupwise 7.0.0
Novell Groupwise 7.03
NA
CVE-2007-3571
The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote malicious users to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be modified, which may reveal the server's internal IP address.
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 7.0
Novell Groupwise 6.0.1
Novell Groupwise 6.5.4
NA
CVE-2006-3268
Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain "random programmatic access" to other email within the same post office.
Novell Groupwise 5.2
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 7.0
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.4
Novell Groupwise
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »