CVE-2012-0410

Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 87%
VendorProductVersion
novellgroupwise
𝑥
≤ 8.02
novellgroupwise
5.2
novellgroupwise
5.5
novellgroupwise
5.57e:e
novellgroupwise
6.0
novellgroupwise
6.0.1:sp1
novellgroupwise
6.5
novellgroupwise
6.5:sp1
novellgroupwise
6.5:sp2
novellgroupwise
6.5:sp3
novellgroupwise
6.5:sp4
novellgroupwise
6.5:sp5
novellgroupwise
6.5:sp6
novellgroupwise
6.5.2
novellgroupwise
6.5.3
novellgroupwise
6.5.4
novellgroupwise
6.5.6
novellgroupwise
6.5.7
novellgroupwise
7.0
novellgroupwise
7.0.3:hp4
novellgroupwise
7.0.3:hp5
novellgroupwise
7.0.4
novellgroupwise
7.0.4:ftf
novellgroupwise
7.01
novellgroupwise
7.01:ir1
novellgroupwise
7.02
novellgroupwise
7.02:hp1
novellgroupwise
7.02:hp1a
novellgroupwise
7.02:hp2
novellgroupwise
7.02:hp2r1
novellgroupwise
7.03
novellgroupwise
7.03:hp
novellgroupwise
7.03:hp2
novellgroupwise
7.03:hp3
novellgroupwise
7.03:hp3\+ftf
novellgroupwise
8.0
novellgroupwise
8.00:hp1
novellgroupwise
8.00:hp2
novellgroupwise
8.01
novellgroupwise
8.01:hp
novellgroupwise
8.02
novellgroupwise
8.02:hp1
novellgroupwise
8.02:hp2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.novell.com/support/kb/doc.php?id=7000708
http://www.securitytracker.com/id?1027217
https://bugzilla.novell.com/show_bug.cgi?id=712163
http://www.novell.com/support/kb/doc.php?id=7000708
http://www.securitytracker.com/id?1027217
https://bugzilla.novell.com/show_bug.cgi?id=712163