Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-1195Groupwise vulnerability

5 documents4 sources
Severity
7.5HIGHNVD
EPSS
4.7%
top 10.62%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Novell Groupwise
Timeline
PublishedDec 15
Latest updateApr 30

Description

Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote attackers to gain privileges.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDnovell/groupwise5.5, 6.0+1

Patches

Patch: www.iss.netPatch: www.securityfocus.comPatch: www.iss.net

🔴Vulnerability Details

2
GHSA
GHSA-947r-gfv7-4ww7: Novell Groupwise 52022-04-30
CVEList
CVE-2001-1195: Novell Groupwise 52002-03-15

💥Exploits & PoCs

2
Exploit-DB
XM Easy Personal FTP Server 5.30 - Remote Format String Write42012-06-14
Exploit-DB
Novell Groupwise 5.5/6.0 Servlet Gateway - Default Authentication2001-12-15
CVE-2001-1195 — Novell Groupwise vulnerability | cvebase