Summary
By modifying the GroupWise Web Interface HELP URL request, it is possible to gain additional information on the remote computer and even read local files from its hard drive.
Solution
Contact your vendor for a patch
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-1999-1005, CVE-1999-1006 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14
- AfterLogic WebMail Pro Multiple Cross Site Scripting Vulnerabilities
- Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
- 12Planet Chat Server one2planet.infolet.InfoServlet XSS
- Apache Tomcat RemoteFilterValve Security Bypass Vulnerability