Novell Groupwise 6.x - Advisories by Product - Secunia Advisories - Vulnerability Information

This vulnerability report for Novell Groupwise 6.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.

If you have information about a new or an existing vulnerability in Novell Groupwise 6.x then you are more than welcome to contact us.

Table of Contents

1. Product Summary Only

2. Secunia Advisory Statistics (All time)

2.1. Statistics for 2009

2.2. Statistics for 2008

2.3. Statistics for 2007

2.4. Statistics for 2006

2.5. Statistics for 2005

2.6. Statistics for 2004

2.7. Statistics for 2003

3. List of Secunia Advisories (All time)

3.1. List for 2009

3.2. List for 2008

3.3. List for 2007

3.4. List for 2006

3.5. List for 2005

3.6. List for 2004

3.7. List for 2003

4. Send Feedback

Vendor, Links, and Unpatched Vulnerabilities

Vendor	Novell

Product Link	View Here (Link to external site)

Affected By	13 Secunia advisories 15 Vulnerabilities

Monitor Product	Receive alerts for this product

Unpatched	0% (0 of 13 Secunia advisories)

Most Critical Unpatched There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied..

13 Secunia Advisories in 2003-2009

Secunia has issued a total of 13 Secunia advisories in 2003-2009 for Novell Groupwise 6.x. Currently, 0% (0 out of 13) are marked as unpatched.

More information about the specific Secunia advisories affecting Novell Groupwise 6.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.

Novell GroupWise Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 1 in 2009. 3,134 views.

Release Date:
2009-02-02

Secunia Advisory ID:
SA33744

Solution Status:
Vendor Patch

Criticality:

Impact:
Security Bypass
Cross Site Scripting
DoS
System access

Where:
From remote

Short Description:
Some vulnerabilities have been reported in Novell GroupWise, which can be exploited by malicious people to conduct cross-site scripting, cross-site request forgery, and script insertion attacks, bypass certain security restrictions, or compromise a vulnerable system. [Read More]

Novell GroupWise Windows Client API Security Bypass
Vendor Patch. Secunia Advisory 1 of 1 in 2008. 6,321 views.

Release Date:
2008-03-17

Secunia Advisory ID:
SA29409

Solution Status:
Vendor Patch

Criticality:

Impact:
Security Bypass
Exposure of sensitive information

Where:
From remote

Short Description:
A vulnerability has been reported in Novell GroupWise, which can be exploited by malicious users to bypass certain security restrictions. [Read More]

Novell GroupWise Client HTML E-Mail Processing Buffer Overflow
Vendor Patch. Secunia Advisory 1 of 2 in 2007. 9,420 views.

Release Date:
2007-12-20

Secunia Advisory ID:
SA28102

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
Francisco Amato has reported a vulnerability in Novell GroupWise Client, which can be exploited by malicious people to compromise a user's system. [Read More]

Novell GroupWise Authentication Credentials Disclosure Security Issue
Vendor Patch. Secunia Advisory 2 of 2 in 2007. 8,562 views.

Release Date:
2007-06-01

Secunia Advisory ID:
SA25498

Solution Status:
Vendor Patch

Criticality:

Impact:
Exposure of sensitive information

Where:
From remote

Short Description:
A security issue has been reported in Novell GroupWise, which can be exploited by malicious people to gain knowledge of sensitive information. [Read More]

Novell GroupWise WebAccess Multiple Vulnerabilities
Vendor Patch. Secunia Advisory 1 of 2 in 2006. 13,022 views.

Release Date:
2006-08-08

Secunia Advisory ID:
SA21411

Solution Status:
Vendor Patch

Criticality:

Impact:
Cross Site Scripting

Where:
From remote

Short Description:
Some vulnerabilities have been reported in Novell GroupWise, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks. [Read More]

Novell GroupWise Windows Client Email Access Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2006. 14,720 views.

Release Date:
2006-06-29

Secunia Advisory ID:
SA20888

Solution Status:
Vendor Patch

Criticality:

Impact:
Security Bypass

Where:
From remote

Short Description:
A vulnerability has been reported in Novell GroupWise, which can be exploited by malicious users to bypass certain security restrictions. [Read More]

GroupWise Client Buffer Overflow Vulnerability
Vendor Patch. Secunia Advisory 1 of 2 in 2005. 7,342 views.

Release Date:
2005-07-27

Secunia Advisory ID:
SA16227

Solution Status:
Vendor Patch

Criticality:

Impact:
Privilege escalation
DoS

Where:
Local system

Short Description:
Francisco Amato has reported a vulnerability in GroupWise Client, which can be exploited by malicious, local users to cause a DoS (Denial of Service) or potentially gain escalated privileges. [Read More]

Novell GroupWise WebAccess Script Insertion Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2005. 9,000 views.

Release Date:
2005-07-19

Secunia Advisory ID:
SA16098

Solution Status:
Vendor Patch

Criticality:

Impact:
Cross Site Scripting

Where:
From remote

Short Description:
Francisco Amato has reported a vulnerability in Novell GroupWise, which can be exploited by malicious people to conduct script insertion attacks. [Read More]

Novell Groupwise WebAccess Insecure Default Configuration
Vendor Patch. Secunia Advisory 1 of 2 in 2004. 9,000 views.

Release Date:
2004-03-15

Secunia Advisory ID:
SA11119

Solution Status:
Vendor Patch

Criticality:

Impact:
System access

Where:
From remote

Short Description:
A security issue has been reported in GroupWise 6 and 6.5 WebAccess, which potentially can be exploited by malicious people to gain unauthorised access to a vulnerable server. [Read More]

Novell Groupwise WebAccess Cross-Site Scripting Vulnerability
Vendor Patch. Secunia Advisory 2 of 2 in 2004. 8,910 views.

Release Date:
2004-01-27

Secunia Advisory ID:
SA10713

Solution Status:
Vendor Patch

Criticality:

Impact:
Cross Site Scripting

Where:
From remote

Short Description:
A vulnerability has been discovered in Novell Groupwise WebAccess, which can be exploited by malicious people to conduct cross-site scripting attacks. [Read More]

Novell Groupwise May Expose Usernames and Passwords
Vendor Patch. Secunia Advisory 1 of 3 in 2003. 8,528 views.

Release Date:
2003-08-04

Secunia Advisory ID:
SA9426

Solution Status:
Vendor Patch

Criticality:

Impact:
Exposure of sensitive information

Where:
Local system

Short Description:
A vulnerability has been identified in Novell Groupwise possibly allowing local users to see usernames and passwords. [Read More]

Novell Groupwise 6 SP3 fixes multiple issues
Vendor Patch. Secunia Advisory 2 of 3 in 2003. 7,537 views.

Release Date:
2003-04-16

Secunia Advisory ID:
SA8602

Solution Status:
Vendor Patch

Criticality:

Impact:
DoS

Where:
From remote

Short Description:
Novell has released Groupwise 6 Support Pack 3. This fixes a security issue in OpenSSL, which can be exploited to cause a DoS (Denial of Service) on the MTA. Multiple other issues has also been fixed, where some potentially could be security related. [Read More]

Novell GroupWise Unspecified Vulnerabilities
Vendor Patch. Secunia Advisory 3 of 3 in 2003. 5,955 views.

Release Date:
2003-02-24

Secunia Advisory ID:
SA8133

Solution Status:
Vendor Patch

Criticality:

Impact:

Where:
Local system

Short Description:
[Read More]