Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise 6.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2513
Novell GroupWise 7 before SP2 20070524, and GroupWise 6 prior to 6.5 post-SP6 20070522, allows remote malicious users to obtain credentials via a man-in-the-middle attack.
Novell Groupwise 6.5
Novell Groupwise 7.0
NA
CVE-2006-3817
Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+A...
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
NA
CVE-2006-3818
Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 prior to 20060721 and WebAccess 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via the GWAP.version parameter.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
NA
CVE-2006-3268
Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain "random programmatic access" to other email within the same post office.
Novell Groupwise 5.2
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 7.0
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.4
Novell Groupwise
NA
CVE-2005-2620
grpWise.exe for Novell GroupWise client 5.5 up to and including 6.5.2 stores the password in plaintext in memory, which allows malicious users to obtain the password using a debugger or another mechanism to read process memory.
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 6.5.2
NA
CVE-2005-2346
Buffer overflow in Novell GroupWise 6.5 Client allows remote malicious users to execute arbitrary code via a GWVW02xx.INI language file with a long entry, as demonstrated using a long ES02TKS.VEW value in the Group Task section.
Novell Groupwise 6.5
NA
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
NA
CVE-2005-0296
NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parame...
Novell Groupwise 6.0
Novell Groupwise Webaccess 6.5
Novell Groupwise 6.5
Novell Groupwise Webaccess 6.0
NA
CVE-2004-2336
Unknown vulnerability in Novell GroupWise and GroupWise WebAccess 6.0 up to and including 6.5, when running with Apache Web Server 1.3 for NetWare where Apache is loaded using GWAPACHE.CONF, allows remote malicious users to read directories and files on the server.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3