Description
The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote attackers to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be modified, which may reveal the server's internal IP address.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
https://secure-support.novell.com/KanisaPlatform/Publishing/370/3555327_f.SAL_Public.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35365
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/45742
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2388
Scores
EPSS
0.0014
EPSS Percentile
33.9%
Details
Status
published
Products (7)
novell/groupwise
6.0 (5 CPE variants)
novell/groupwise
6.0.1 sp1
novell/groupwise
6.5 (7 CPE variants)
novell/groupwise
6.5.2
novell/groupwise
6.5.3
novell/groupwise
6.5.4
novell/groupwise
7.0 (2 CPE variants)
Published
Jul 05, 2007
Tracked Since
Feb 18, 2026