CVE-2009-0274
Novell GroupWise - Exposure of Sensitive Information via Crafted URL
Title source: llmDescription
Unspecified vulnerability in WebAccess in Novell GroupWise 6.5, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 might allow remote attackers to obtain sensitive information via a crafted URL, related to conversion of POST requests to GET requests.
References (3)
Core 3
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/33744
Vendor Advisory x_refsource_confirm
http://www.novell.com/support/viewContent.do?externalId=7002322
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33559
Scores
EPSS
0.0037
EPSS Percentile
58.6%
Details
CWE
CWE-200
Status
published
Products (6)
novell/groupwise
6.5
novell/groupwise
7.0
novell/groupwise
7.01
novell/groupwise
7.02x
novell/groupwise
7.03 (2 CPE variants)
novell/groupwise
8.0
Published
Feb 03, 2009
Tracked Since
Feb 18, 2026