CVE-2012-0410

Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter.

Published: Jul 5, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-0410
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-22

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
novell / groupwise	7.0.4	7.0.4.x
novell / groupwise	6.5-sp5	6.5-sp5.x
novell / groupwise	6.0	6.0.x
novell / groupwise	7.0	7.0.x
novell / groupwise	7.03-hp2	7.03-hp2.x
novell / groupwise	8.02-hp2	8.02-hp2.x
novell / groupwise	5.5	5.5.x
novell / groupwise	8.02	8.02.x
novell / groupwise	7.02-hp1a	7.02-hp1a.x
novell / groupwise	6.5.6	6.5.6.x
novell / groupwise	6.5.3	6.5.3.x
novell / groupwise	7.02-hp1	7.02-hp1.x
novell / groupwise	7.02	7.02.x
novell / groupwise	7.03-hp3	7.03-hp3.x
novell / groupwise	8.0	8.0.x
novell / groupwise	8.02-hp1	8.02-hp1.x
novell / groupwise	7.03-hp3+ftf	7.03-hp3+ftf.x
novell / groupwise	7.02-hp2r1	7.02-hp2r1.x
novell / groupwise	6.5-sp1	6.5-sp1.x
novell / groupwise	5.2	5.2.x
novell / groupwise	8.00-hp1	8.00-hp1.x
novell / groupwise	6.5.4	6.5.4.x
novell / groupwise	7.02-hp2	7.02-hp2.x
novell / groupwise	7.01-ir1	7.01-ir1.x
novell / groupwise	8.01-hp	8.01-hp.x
novell / groupwise	6.5-sp6	6.5-sp6.x
novell / groupwise	7.0.4-ftf	7.0.4-ftf.x
novell / groupwise	6.5-sp4	6.5-sp4.x
novell / groupwise	7.03-hp	7.03-hp.x
novell / groupwise	6.5-sp3	6.5-sp3.x
novell / groupwise	7.01	7.01.x
novell / groupwise	-	8.02.x
novell / groupwise	7.0.3-hp5	7.0.3-hp5.x
novell / groupwise	6.0.1-sp1	6.0.1-sp1.x
novell / groupwise	7.0.3-hp4	7.0.3-hp4.x
novell / groupwise	6.5	6.5.x
novell / groupwise	6.5.2	6.5.2.x
novell / groupwise	8.00-hp2	8.00-hp2.x
novell / groupwise	7.03	7.03.x
novell / groupwise	6.5-sp2	6.5-sp2.x
novell / groupwise	5.57e	5.57e.x
novell / groupwise	6.5.7	6.5.7.x
novell / groupwise	8.01	8.01.x

Vulnerability Database

289,697

CVE-2012-0410