Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6435
Stack-based buffer overflow in Novell GroupWise prior to 6.5.7, when HTML preview of e-mail is enabled, allows user-assisted remote malicious users to execute arbitrary code via a long SRC attribute in an IMG element when forwarding or replying to a crafted e-mail.
Novell Groupwise
NA
CVE-2014-0611
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 2012 before Support Pack 4 and 2014 before Support Pack 2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise
NA
CVE-2001-1233
Netware Enterprise Web Server 5.1 running GroupWise WebAccess 5.5 with Novell Directory Services (NDS) enabled allows remote malicious users to enumerate user names, group names and other system information by accessing ndsobj.nlm.
Novell Groupwise Webaccess 5.5
Novell Netware 5.1
NA
CVE-2011-2661
Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 allow remote malicious users to inject arbitrary web script or HTML via the (1) Directory.Item.name or (2) Directory.Item.displayName parameter.
Novell Groupwise 8.0
NA
CVE-2011-0334
Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote malicious users to execute arbitrary code via a long HTTP request for a .css file.
Novell Groupwise 8.0
NA
CVE-2011-2218
Unspecified vulnerability in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote malicious users to cause a denial of service (daemon crash) via unknown vectors, a different vulnerability than CVE-2011-2219.
Novell Groupwise 8.0
NA
CVE-2011-2219
Unspecified vulnerability in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote malicious users to cause a denial of service (daemon crash) via unknown vectors, a different vulnerability than CVE-2011-2218.
Novell Groupwise 8.0
6.1
CVSSv3
CVE-2016-9169
A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise prior to 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote malicious user to execute JavaScript in the context of a valid user's browser session by getting the ...
Novell Groupwise 2014
NA
CVE-2002-0341
GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote malicious users to determine the full pathname of the web server via an HTTP request with an invalid HTMLVER parameter.
Novell Groupwise 5.5
NA
CVE-2007-2171
Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess prior to 7.0 SP2 allows remote malicious users to execute arbitrary code via long base64 content in an HTTP Basic Authentication request.
Novell Groupwise 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »