Summary
Novell Groupwise WebAcc Servlet is installed. This servlet exposes critical system information, and allows remote attackers to read any file.
Solution
Disable access to the servlet until the author releases a patch.
Additional information:
http://www.securiteam.com/securitynews/6S00N0K2UM.html
Severity
Classification
-
CVE CVE-2001-1458 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- @Mail 'admin.php' Cross-Site Scripting Vulnerabilities
- Abtp Portal Project 'ABTPV_BLOQUE_CENT' Parameter Local and Remote File Include Vulnerabilities
- Aardvark Topsites <= 4.2.2 Remote File Inclusion Vulnerability
- AbanteCart Multiple Cross-Site Scripting Vulnerabilities
- Apache Tomcat Login Constraints Security Bypass Vulnerability