Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parameter that returns template files or the "about" information page. NOTE: the vendor has disputed this issue
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell GroupWise WebAccess 信息泄露漏洞
Vulnerability Description
Novell GroupWise是Novell的一种目录服务系统。 Novell GroupWise WebAccess的错误处理模块存在信息泄露漏洞。 远程攻击者可通过不正确的登录,并修改error或modify参数,使服务器返回模板文件或"about"页面,从而在不经过认证的情况下,获取诸如软件版本之类的敏感信息。 注:厂商对此漏洞持有异议。
CVSS Information
N/A
Vulnerability Type
N/A