Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
novell groupwise 7.0.2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-3501
Cross-site scripting (XSS) vulnerability in the WebAccess simple interface in Novell Groupwise 7.0.x allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise 7.0.3
Novell Groupwise 7.0
Novell Groupwise 7.0.2
7.5
CVSSv2
CVE-2009-1634
The WebAccess component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 does not properly implement session management mechanisms, which allows remote malicious users to gain access to user accounts via unspecified vectors.
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 7.03
Novell Groupwise 8.0
Novell Groupwise 7.0.0
Novell Groupwise 7.0.2
1 EDB exploit
10
CVSSv2
CVE-2009-1636
Multiple buffer overflows in the Internet Agent (aka GWIA) component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 allow remote malicious users to execute arbitrary code via (1) a crafted e-mail address in an SMTP session or (2) an SMTP command.
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 7.03
Novell Groupwise 7.01
Novell Groupwise 7.0.0
Novell Groupwise 7.0.3
Novell Groupwise 8.0
4.3
CVSSv2
CVE-2009-1762
Multiple cross-site scripting (XSS) vulnerabilities in the WebAccess login page (aka gw/webacc) in Novell GroupWise 7.x prior to 7.03 HP2 allow remote malicious users to inject arbitrary web script or HTML via the (1) GWAP.version or (2) User.Theme (aka User.Theme.index) paramete...
Novell Groupwise 7.01
Novell Groupwise 7.02x
Novell Groupwise 7.0
Novell Groupwise 7.0.3
Novell Groupwise 7.0.2
Novell Groupwise 7.0.0
Novell Groupwise 7.03
4.3
CVSSv2
CVE-2009-1635
Multiple cross-site scripting (XSS) vulnerabilities in the WebAccess component in Novell GroupWise 7.x prior to 7.03 HP3 and 8.x prior to 8.0 HP2 allow remote malicious users to inject arbitrary web script or HTML via (1) the User.lang parameter to the login page (aka gw/webacc),...
Novell Groupwise 7.0
Novell Groupwise 8.0
Novell Groupwise 7.01
Novell Groupwise 7.0.2
Novell Groupwise 7.0.3
Novell Groupwise 7.03
Novell Groupwise 7.0.0
Novell Groupwise 7.02x
6.5
CVSSv2
CVE-2010-4717
Multiple stack-based buffer overflows in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP allow remote malicious users to execute arbitrary code via a long (1) LIST or (2) LSUB command.
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 7.0.1
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 5.57e
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 6.5.6
Novell Groupwise 7.0.2
Novell Groupwise 7.0.4
Novell Groupwise 5.0
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 4.1
Novell Groupwise 6.5.7
Novell Groupwise 7.0
1 EDB exploit
10
CVSSv2
CVE-2010-4325
Buffer overflow in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP2 allows remote malicious users to execute arbitrary code via a crafted TZID variable in a VCALENDAR message.
Novell Groupwise 4.1
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 6.5.7
Novell Groupwise 6.5
Novell Groupwise 7.0.3
Novell Groupwise 7.0.4
Novell Groupwise 5.2
Novell Groupwise 5.57e
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 5.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 5.0
Novell Groupwise 5.1
Novell Groupwise 7.0.1
10
CVSSv2
CVE-2010-4326
Multiple buffer overflows in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP allow remote malicious users to execute arbitrary code via variables in a VCALENDAR message, as demonstrated by a long (1) REQUEST-STATUS, (2) TZNAME, (3) COMMENT, or (4...
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise 4.1a
Novell Groupwise 5.0
Novell Groupwise 6.0
Novell Groupwise 7.0.4
Novell Groupwise 7.0.1
Novell Groupwise 5.57e
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 7.0
Novell Groupwise
Novell Groupwise 5.2
Novell Groupwise 4.1
Novell Groupwise 6.0.1
Novell Groupwise 6.5.7
Novell Groupwise 7.0.2
10
CVSSv2
CVE-2010-4713
Integer signedness error in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise prior to 8.02HP allows remote malicious users to execute arbitrary code via a signed integer value in the Content-Type header.
Novell Groupwise 4.1a
Novell Groupwise 5.1
Novell Groupwise 6.0.1
Novell Groupwise 6.0
Novell Groupwise 6.5
Novell Groupwise 7.0.4
Novell Groupwise 8.0
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 7.0
Novell Groupwise 7.0.2
Novell Groupwise 5.2
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 6.5.6
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
4.3
CVSSv2
CVE-2010-4716
Cross-site scripting (XSS) vulnerability in the WebPublisher component in Novell GroupWise prior to 8.02HP allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Novell Groupwise 6.5
Novell Groupwise 6.5.2
Novell Groupwise 6.5.3
Novell Groupwise 6.5.4
Novell Groupwise 8.0
Novell Groupwise 8.0.1
Novell Groupwise
Novell Groupwise 4.1
Novell Groupwise 5.0
Novell Groupwise 6.0
Novell Groupwise 6.5.7
Novell Groupwise 7.0.3
Novell Groupwise 7.0.1
Novell Groupwise 5.1
Novell Groupwise 5.5
Novell Groupwise 5.57e
Novell Groupwise 7.0
Novell Groupwise 5.2
Novell Groupwise 4.1a
Novell Groupwise 6.0.1
Novell Groupwise 6.5.6
Novell Groupwise 7.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »