Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
groupwise vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2018-12468
A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution.
Microfocus Groupwise
4.3
CVSSv2
CVE-2014-0611
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 2012 before Support Pack 4 and 2014 before Support Pack 2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise
9.3
CVSSv2
CVE-2007-6435
Stack-based buffer overflow in Novell GroupWise prior to 6.5.7, when HTML preview of e-mail is enabled, allows user-assisted remote malicious users to execute arbitrary code via a long SRC attribute in an IMG element when forwarding or replying to a crafted e-mail.
Novell Groupwise
10
CVSSv2
CVE-2003-1551
Unspecified vulnerability in Novell GroupWise 6 SP3 WebAccess before Revision F has unknown impact and attack vectors related to "malicious script."
Novell Groupwise
5
CVSSv2
CVE-2005-2804
Integer overflow in the registry parsing code in GroupWise 6.5.3, and possibly earlier version, allows remote malicious users to cause a denial of service (application crash) via a large TCP/IP port in the Windows registry key.
Novell Groupwise 6.5.3
1 EDB exploit
5
CVSSv2
CVE-2000-0146
The Java Server in the Novell GroupWise Web Access Enhancement Pack allows remote malicious users to cause a denial of service via a long URL to the servlet.
Novell Groupwise 5.5
1 EDB exploit
7.5
CVSSv2
CVE-2005-2346
Buffer overflow in Novell GroupWise 6.5 Client allows remote malicious users to execute arbitrary code via a GWVW02xx.INI language file with a long entry, as demonstrated using a long ES02TKS.VEW value in the Group Task section.
Novell Groupwise 6.5
10
CVSSv2
CVE-2007-2171
Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess prior to 7.0 SP2 allows remote malicious users to execute arbitrary code via long base64 content in an HTTP Basic Authentication request.
Novell Groupwise 7.0
4.3
CVSSv2
CVE-2011-2661
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote malicious users to inject arbitrary web script or HTML via the (1) Directory.Item.name or (2) Directory.Item.displayName parameter.
Novell Groupwise 8.0
5
CVSSv2
CVE-2001-1232
GroupWise WebAccess 5.5 with directory indexing enabled allows a remote malicious user to view arbitrary directory contents via an HTTP request with a lowercase "get".
Novell Groupwise 5.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »