Unrated severityNVD Advisory· Published Jan 17, 2005· Updated Apr 16, 2026
CVE-2005-0296
CVE-2005-0296
Description
NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parameter that returns template files or the "about" information page. NOTE: the vendor has disputed this issue
Affected products
12cpe:2.3:a:novell:groupwise:6.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:novell:groupwise:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.5:sp2:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise_webaccess:6.0:sp4:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:novell:groupwise_webaccess:6.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.5:sp2:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- support.novell.com/servlet/tidfinder/10096251nvdVendor Advisory
- www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-01/0771.htmlnvdVendor Advisory
- www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2005-01/0341.htmlnvdVendor Advisory
- www.securityfocus.com/bid/12285nvdVendor Advisory
- marc.infonvd
- www.osvdb.org/13135nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/18954nvd
News mentions
0No linked articles in our index yet.