Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise 7.0.2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-1634
The WebAccess component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 does not properly implement session management mechanisms, which allows remote malicious users to gain access to user accounts via unspecified vectors.
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0.0
Novell Groupwise 7.0.2
1 EDB exploit
4.3
CVSSv2
CVE-2008-3501
Cross-site scripting (XSS) vulnerability in the WebAccess simple interface in Novell Groupwise 7.0.x allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise 7.0.3
Novell Groupwise 7.0
Novell Groupwise 7.0.2
10
CVSSv2
CVE-2009-1636
Multiple buffer overflows in the Internet Agent (aka GWIA) component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 allow remote malicious users to execute arbitrary code via (1) a crafted e-mail address in an SMTP session or (2) an SMTP command.
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 7.03
Novell Groupwise 7.01
Novell Groupwise 7.0.0
Novell Groupwise 7.0.3
Novell Groupwise 8.0
4.3
CVSSv2
CVE-2009-1762
Multiple cross-site scripting (XSS) vulnerabilities in the WebAccess login page (aka gw/webacc) in Novell GroupWise 7.x prior to 7.03 HP2 allow remote malicious users to inject arbitrary web script or HTML via the (1) GWAP.version or (2) User.Theme (aka User.Theme.index) paramete...
Novell Groupwise 7.01
Novell Groupwise 7.02x
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 7.0.2
Novell Groupwise 7.0.0
Novell Groupwise 7.03
4.3
CVSSv2
CVE-2009-1635
Multiple cross-site scripting (XSS) vulnerabilities in the WebAccess component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 allow remote malicious users to inject arbitrary web script or HTML via (1) the User.lang parameter to the login page (aka gw/webacc),...
Novell Groupwise 7.0
Novell Groupwise 8.0
Novell Groupwise 7.01
Novell Groupwise 7.0.2
Novell Groupwise 7.0.3
Novell Groupwise 7.03
Novell Groupwise 7.0.0
Novell Groupwise 7.02x
10
CVSSv2
CVE-2010-4711
Double free vulnerability in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP allows remote malicious users to execute arbitrary code via a large parameter in a LIST command.
Novell Groupwise 5.57e
Novell Groupwise 6.0
Novell Groupwise 6.0.1
Novell Groupwise 6.5
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 7.0.3
Novell Groupwise 4.1a
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 7.0.4
Novell Groupwise 8.0
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 6.5.7
Novell Groupwise 5.0
Novell Groupwise 6.5.3
Novell Groupwise 7.0.1
1 EDB exploit
10
CVSSv2
CVE-2010-4714
Multiple stack-based buffer overflows in Novell GroupWise prior to 8.02HP allow remote malicious users to execute arbitrary code via a long HTTP Host header to (1) gwpoa.exe in the Post Office Agent, (2) gwmta.exe in the Message Transfer Agent, (3) gwia.exe in the Internet Agent,...
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
Novell Groupwise 7.0.1
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 7.0
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 7.0.2
Novell Groupwise 7.0.4
5
CVSSv2
CVE-2010-4715
Multiple directory traversal vulnerabilities in the (1) WebAccess Agent and (2) Document Viewer Agent components in Novell GroupWise prior to 8.02HP allow remote malicious users to read arbitrary files via unspecified vectors. NOTE: some of these details are obtained from third p...
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 7.0.2
Novell Groupwise 7.0.4
Novell Groupwise 7.0
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
1 EDB exploit
4.3
CVSSv2
CVE-2010-4716
Cross-site scripting (XSS) vulnerability in the WebPublisher component in Novell GroupWise prior to 8.02HP allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.0
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
Novell Groupwise 7.0.1
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 7.0
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 6.5.6
Novell Groupwise 7.0.2
10
CVSSv2
CVE-2010-4325
Buffer overflow in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP2 allows remote malicious users to execute arbitrary code via a crafted TZID variable in a VCALENDAR message.
Novell Groupwise 4.1
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 6.5.7
Novell Groupwise 6.5
Novell Groupwise 7.0.3
Novell Groupwise 7.0.4
Novell Groupwise 5.2
Novell Groupwise 5.57e
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.0
Novell Groupwise 5.1
Novell Groupwise 7.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »