CVE-2009-1634

2009-05-2615:16:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

Low

0.163 Low

EPSS

Percentile

96.0%

JSON

The WebAccess component in Novell GroupWise 7.x before 7.03 HP3 and 8.x before 8.0 HP2 does not properly implement session management mechanisms, which allows remote attackers to gain access to user accounts via unspecified vectors.

References

secunia.com/advisories/35177

www.novell.com/support/viewContent.do?externalId=7003266&sliceId=1

www.securityfocus.com/bid/35066

www.vupen.com/english/advisories/2009/1393

bugzilla.novell.com/show_bug.cgi?id=472979

exchange.xforce.ibmcloud.com/vulnerabilities/50688