Korean

<< Back VID 21661 Severity 30 Port 80, ... Protocol TCP Class CGI Detailed Description The Novell GroupWise WebAccess, according to its version number, has a cross-site scripting vulnerability. GroupWise is the commercial groupware package distributed and maintained by Novell. Novell GroupWise versions 6.5 through to 6.5 SP4 are vulnerable to a cross-site scripting vulnerability, caused by improper validation of email messages of HTML and script code embedded in IMG tags. This vulnerability could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks. * Note: This check solely relied on the version number of the Novell GroupWise WebAccess installed on the remote Web server to assess this vulnerability, so this might be a false positive. * References: http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098301.htm http://support.novell.com/cgi-bin/search/searchtid.cgi?/2971890.htm http://secunia.com/advisories/16098/ http://archives.neohapsis.com/archives/bugtraq/2005-07/0322.html http://www.infobyte.com.ar/adv/ISR-11.html * Platforms Affected: Novell, Inc., Novell GroupWise 6.5 through to 6.5 SP4 Microsoft Windows Any version Novell NetWare Any version Linux Any version Recommendation Upgrade to the latest version of Novell GroupWise (6.5 dated after July 11, 2005 or 6.5 SP5 Field Test File revision D or later), available from the Novell Download Web page at http://download.novell.com/index.jsp?search=Search&families=2650&x=17&y=11 Field test files for GroupWise 6.5 are available from the 'Beta Patches - GroupWise 6.5' Web page at http://support.novell.com/filefinder/16963/beta.html Related URL CVE-2005-2276 (CVE) Related URL 14310 (SecurityFocus) Related URL 21421 (ISS)