Groupwise@6.0 Security Vulnerabilities and Issues — Groupwise@6.0 CVE List

Lucene search

NovellGroupwise6.0

3 matches found

CVE•added 2005/08/17 4:0 a.m.•53 views

CVE-2005-2620

grpWise.exe for Novell GroupWise client 5.5 through 6.5.2 stores the password in plaintext in memory, which allows attackers to obtain the password using a debugger or another mechanism to read process memory.

5CVSS6.5AI score0.01761EPSS

CVE•added 2005/04/21 4:0 a.m.•48 views

CVE-2001-1458

Directory traversal vulnerability in Novell GroupWise 5.5 and 6.0 allows remote attackers to read arbitrary files via a request for /servlet/webacc?User.html= that contains "../" (dot dot) sequences and a null character.

5CVSS6.7AI score0.00888EPSS

CVE•added 2005/02/10 5:0 a.m.•45 views

CVE-2005-0296

NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parameter that returns te...

5CVSS6.2AI score0.00842EPSS