Summary
By modifying the GroupWise Web Interface HTMLVER URL request, it is possible to gain additional information on the remote computer and even read local files from its hard drive
Solution
contact your vendor for a patch
Severity
Classification
-
CVE CVE-2002-0341 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- AMSI 'file' Parameter Directory Traversal Vulnerability
- Adiscon LogAnalyzer 'highlight' Parameter Cross Site Scripting Vulnerability
- Apache Commons Daemon 'jsvc' Information Disclosure Vulnerability
- Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities
- Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities