Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
groupwise vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-1458
Directory traversal vulnerability in Novell GroupWise 5.5 and 6.0 allows remote malicious users to read arbitrary files via a request for /servlet/webacc?User.html= that contains "../" (dot dot) sequences and a null character.
Novell Groupwise 6.0
Novell Groupwise 5.5
7.5
CVSSv2
CVE-2002-1088
Buffer overflow in Novell GroupWise 6.0.1 Support Pack 1 allows remote malicious users to execute arbitrary code via a long RCPT TO command.
Novell Groupwise 6.0
Novell Groupwise 6.0.1
4.3
CVSSv2
CVE-2007-2513
Novell GroupWise 7 before SP2 20070524, and GroupWise 6 prior to 6.5 post-SP6 20070522, allows remote malicious users to obtain credentials via a man-in-the-middle attack.
Novell Groupwise 6.5
Novell Groupwise 7.0
7.5
CVSSv2
CVE-2001-1195
Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote malicious users to gain privileges.
Novell Groupwise 6.0
Novell Groupwise 5.5
1 EDB exploit
4.3
CVSSv2
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 6.0
1 EDB exploit
5
CVSSv2
CVE-2006-4511
Messenger Agents (nmma.exe) in Novell GroupWise 2.0.2 and 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings ...
Novell Groupwise Messenger 2.0.2
Novell Groupwise Messenger 1.0.6
4.3
CVSSv2
CVE-2006-3817
Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+A...
Novell Groupwise Webaccess 7
Novell Groupwise Webaccess 6.5
4.3
CVSSv2
CVE-2006-3818
Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 prior to 20060721 and WebAccess 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via the GWAP.version parameter.
Novell Groupwise Webaccess 7
Novell Groupwise Webaccess 6.5
5
CVSSv2
CVE-1999-1005
Groupwise web server GWWEB.EXE allows remote malicious users to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
Netscape Enterprise Server 3.0.7a
Novell Groupwise 5.5
Novell Groupwise 5.2
1 EDB exploit
9.3
CVSSv2
CVE-2007-6435
Stack-based buffer overflow in Novell GroupWise prior to 6.5.7, when HTML preview of e-mail is enabled, allows user-assisted remote malicious users to execute arbitrary code via a long SRC attribute in an IMG element when forwarding or replying to a crafted e-mail.
Novell Groupwise
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »