Information Disclosure in NetWare Enterprise Web Server with GroupWise WebAccess by Novell
CVE-2001-1233

Currently unrated

Key Information:

Vendor: Novell
Status: Groupwise Webaccess
Vendor: CVE Published:; 14 August 2001

Summary

The NetWare Enterprise Web Server 5.1, when running GroupWise WebAccess 5.5 with Novell Directory Services (NDS) enabled, poses a serious security risk. It allows remote attackers to exploit ndsobj.nlm, enabling them to enumerate user names, group names, and other sensitive system information. This vulnerability can be leveraged to gain unauthorized access to various aspects of the system, leading to further exploitation and potential compromise.

References

http://www.securityfocus.com/archive/1/204875

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/6987

vdb-entryx_refsource_XF

Timeline

Vulnerability Reserved
May 1, 2002
Vulnerability published
Aug 14, 2001