Vulnerability: GroupWise Web root disclosure

BugTraq says a vulnerability has been reported in some versions of GroupWise.

If a maliciously formatted web request is submitted to the GWWEB.EXE cgi process, an error message will be returned. This error message will include the full path of the script. Knowledge of the path to the web root may aid an attacker in performing further intelligent attacks against the vulnerable host. However, this has not been confirmed by Novell. Read more at

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about NovellSecurityFocus

Show Comments