CVE-2009-1634

Published: May 26, 2009Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The WebAccess component in Novell GroupWise 7.x before 7.03 HP3 and 8.x before 8.0 HP2 does not properly implement session management mechanisms, which allows remote attackers to gain access to user accounts via unspecified vectors.

Affected (9)

Products: Novell: Groupwise

1 product

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Novell Groupwise	Version 7.0.0 sp1
Novell Groupwise	Version 7.0.0 sp2
Novell Groupwise	Version 7.0.2
Novell Groupwise	Version 7.0.3
Novell Groupwise	Version 7.03 hp1a
Novell Groupwise	Version 7.03 hp2
Novell Groupwise	Version 7.0
Novell Groupwise	Version 8.0
Novell Groupwise	Version 8.0 hp1

References (12)

http://secunia.com/advisories/35177

Source: cve@mitre.org

Vendor Advisory

http://www.novell.com/support/viewContent.do?externalId=7003266&sliceId=1

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/35066

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2009/1393

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=472979

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/50688

Source: cve@mitre.org

http://secunia.com/advisories/35177

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.novell.com/support/viewContent.do?externalId=7003266&sliceId=1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/35066

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2009/1393

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=472979

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/50688

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.