Short Name |
HTTP:NOVELL:WEBACC-MODIFY |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
Novell GroupWise WebAccess Cross Site Scripting Attempt |
Release Date |
2009/06/09 |
Update Number |
1449 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against GroupWise WebAccess. Attackers can bypass security restrictions to conduct a cross-site scripting attack.
Novell GroupWise WebAccess is prone to multiple security vulnerabilities. An attacker may leverage these issues to bypass certain security restrictions or conduct cross-site scripting attacks. Note that some of the issues may be related to BID 35061. We will update this BID as more information emerges. Versions prior to WebAccess 7.03 HP3 and 8.0.0 HP2 are vulnerable.