Lucene search

K
NovellGroupwise

6 matches found

CVE
CVE
added 2012/03/02 10:55 p.m.128 views

CVE-2011-4189

The client in Novell GroupWise 8.0x through 8.02HP3 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via a long e-mail address in an Address Book (aka .NAB) file.

7.5CVSS8AI score0.44338EPSS
CVE
CVE
added 2014/08/29 10:0 a.m.87 views

CVE-2014-0600

FileUploadServlet in the Administration service in Novell GroupWise 2014 before SP1 allows remote attackers to read or write to arbitrary files via the poLibMaintenanceFileSave parameter, aka ZDI-CAN-2287.

7.8CVSS6.8AI score0.05716EPSS
CVE
CVE
added 2005/08/03 4:0 a.m.52 views

CVE-2005-2346

Buffer overflow in Novell GroupWise 6.5 Client allows remote attackers to execute arbitrary code via a GWVW02xx.INI language file with a long entry, as demonstrated using a long ES02TKS.VEW value in the Group Task section.

7.5CVSS8.4AI score0.02053EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.43 views

CVE-2002-1088

Buffer overflow in Novell GroupWise 6.0.1 Support Pack 1 allows remote attackers to execute arbitrary code via a long RCPT TO command.

7.5CVSS8.3AI score0.0246EPSS
CVE
CVE
added 2009/05/26 3:30 p.m.41 views

CVE-2009-1634

The WebAccess component in Novell GroupWise 7.x before 7.03 HP3 and 8.x before 8.0 HP2 does not properly implement session management mechanisms, which allows remote attackers to gain access to user accounts via unspecified vectors.

7.5CVSS7.1AI score0.04944EPSS
CVE
CVE
added 2002/03/15 5:0 a.m.38 views

CVE-2001-1195

Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote attackers to gain privileges.

7.5CVSS7.1AI score0.04702EPSS