Vulnerability Details : CVE-2005-0296
NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as the version, via an incorrect login and a modified (1) error or (2) modify parameter that returns template files or the "about" information page. NOTE: the vendor has disputed this issue
Products affected by CVE-2005-0296
- cpe:2.3:a:novell:groupwise:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.5:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise:6.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.5:*:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:novell:groupwise_webaccess:6.5:sp2:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-0296
1.18%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 85 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-0296
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2005-0296
-
http://www.securityfocus.com/bid/12285
Vendor Advisory
-
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2005-01/0341.html
Vendor Advisory
-
http://marc.info/?l=bugtraq&m=110608203729814&w=2
'Novell GroupWise WebAccess error modules loading' - MARC
-
http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-01/0771.html
Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/18954
Novell GroupWise WebAccess error bypass authentication CVE-2005-0296 Vulnerability Report
-
http://support.novell.com/servlet/tidfinder/10096251
Support Resources | Micro Focus | OpenTextVendor Advisory
-
http://www.osvdb.org/13135
404 Not Found
Jump to