CVE-2002-0303Groupwise vulnerability

3 documents3 sources
Severity
4.6MEDIUMNVD
EPSS
0.0%
top 88.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Groupwise
Timeline
PublishedMay 31
Latest updateApr 30

Description

GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows attackers to gain privileges of other users by logging in without a password.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-mq45-cj46-gpg8: GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows attackers to gain privileges of other users2022-04-30
CVEList
CVE-2002-0303: GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows attackers to gain privileges of other users2002-05-03
CVE-2002-0303 — Novell Groupwise vulnerability | cvebase