Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2008-2704
Novell GroupWise Messenger (GWIM) prior to 2.0.3 Hot Patch 1 allows remote malicious users to cause a denial of service (crash) via a long user ID, possibly involving a popup alert. NOTE: it is not clear whether this issue crosses privilege boundaries.
Novell Groupwise Messenger 1.0.6
Novell Groupwise Messenger 2.0.2
Novell Groupwise Messenger 2.0.3
Novell Groupwise Messenger 2.0
1000
VMScore
CVE-2008-2703
Multiple stack-based buffer overflows in Novell GroupWise Messenger (GWIM) Client prior to 2.0.3 HP1 for Windows allow remote malicious users to execute arbitrary code via "spoofed server responses" that contain a long string after the NM_A_SZ_TRANSACTION_ID field name.
Novell Groupwise Messenger 2.0
Novell Groupwise Messenger 2.0.2
Novell Groupwise Messenger 2.0.3
2 EDB exploits
383
VMScore
CVE-2016-5760
Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in Novell GroupWise prior to 2014 R2 Service Pack 1 Hot Patch 1 allow remote malicious users to inject arbitrary web script or HTML via the (1) token parameter to gwadmin-console/install/login.jsp or...
Novell Groupwise
Novell Groupwise 2014
383
VMScore
CVE-2016-5761
Cross-site scripting (XSS) vulnerability in Novell GroupWise prior to 2014 R2 Service Pack 1 Hot Patch 1 allows remote malicious users to inject arbitrary web script or HTML via a crafted email.
Novell Groupwise
Novell Groupwise 2014
668
VMScore
CVE-2016-5762
Integer overflow in the Post Office Agent in Novell GroupWise prior to 2014 R2 Service Pack 1 Hot Patch 1 might allow remote malicious users to execute arbitrary code via a long (1) username or (2) password, which triggers a heap-based buffer overflow.
Novell Groupwise
Novell Groupwise 2014
383
VMScore
CVE-2007-2513
Novell GroupWise 7 before SP2 20070524, and GroupWise 6 prior to 6.5 post-SP6 20070522, allows remote malicious users to obtain credentials via a man-in-the-middle attack.
Novell Groupwise 6.5
Novell Groupwise 7.0
905
VMScore
CVE-2010-2777
Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise 7.x prior to 7.0 post-SP4 FTF and 8.x prior to 8.0 SP2 allows remote malicious users to execute arbitrary code via a long mailbox name in a CREATE command.
Novell Groupwise 7.0
Novell Groupwise 8.0
1 EDB exploit
755
VMScore
CVE-2001-1195
Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote malicious users to gain privileges.
Novell Groupwise 5.5
Novell Groupwise 6.0
1 EDB exploit
445
VMScore
CVE-2001-1231
GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote malicious users to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix.
Novell Groupwise 5.5
Novell Groupwise 6.0
668
VMScore
CVE-2002-1088
Buffer overflow in Novell GroupWise 6.0.1 Support Pack 1 allows remote malicious users to execute arbitrary code via a long RCPT TO command.
Novell Groupwise 6.0
Novell Groupwise 6.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »