CVE-2001-1195

Novell Groupwise <6.0 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1195. PoCs published by Adam Gray.

AI-analyzed exploit summary This is a writeup describing an authentication bypass vulnerability in Novell Groupwise Servlet Gateway. The default credentials ('servlet'/'manager') allow unauthorized access to the Servlet Manager interface.

Description

Novell Groupwise 5.5 and 6.0 Servlet Gateway is installed with a default username and password for the servlet manager, which allows remote attackers to gain privileges.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Adam Gray · textremotenovell
https://www.exploit-db.com/exploits/21182

This is a writeup describing an authentication bypass vulnerability in Novell Groupwise Servlet Gateway. The default credentials ('servlet'/'manager') allow unauthorized access to the Servlet Manager interface.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Novell Groupwise Servlet Gateway (with Novell JVM for NetWare v1.1.7b and NetWare Enterprise Web Server)
No auth needed
Prerequisites: Network access to the target server · Servlet Manager interface exposed
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/245871
Patch, Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/7701.php
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/3697

Scores

EPSS 0.0734
EPSS Percentile 93.6%

Details

Status published
Products (2)
novell/groupwise 5.5
novell/groupwise 6.0
Published Dec 15, 2001
Tracked Since Feb 18, 2026