Exploitation Summary
EIP tracks 1 public exploit for CVE-1999-1005. PoCs published by Sacha Faust Bourque.
AI-analyzed exploit summary This writeup describes multiple vulnerabilities in Novell GroupWise 5.2/5.5 and Netscape Enterprise Server for NetWare 4/5 3.0.7a, including path disclosure, directory traversal, and a potential buffer overflow leading to DoS or RCE.
Description
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
Exploits (1)
This writeup describes multiple vulnerabilities in Novell GroupWise 5.2/5.5 and Netscape Enterprise Server for NetWare 4/5 3.0.7a, including path disclosure, directory traversal, and a potential buffer overflow leading to DoS or RCE.