| VID |
22250 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Servlet |
| Detailed Description |
The Novell Groupwise servlet server is configured with the default password.
Novell Groupwise Servlet Gateway is a product that allows Java servlets to be run with NetWare, using Novell JVM (Java Virtual Machine) for NetWare v1.1.7b and NetWare Enterprise Web Server. The Servlet Manager in Novell GroupWise versions 5.5 Enhancement Pack and 6.0 is installed with a default username and password for the servlet manager. The servlet manager allows the configuration of the servlets to be loaded, reloaded, or unloaded. The ability to control and unload servlets allows an attacker to deny web-based services to users. This will prevent users from accessing mail or other servlet based resources.
To test this finding:
https://[targethost]/servlet/ServletManager/
enter 'servlet' for the user and 'manager' for the password.
* References:
http://www.securiteam.com/securitynews/6G00Q003FE.html
http://www.securityfocus.com/archive/1/245871
* Platforms Affected:
Novell GroupWise 6.0
Novell GroupWise 5.5 Enhancement Pack
Netware 5
Microsoft Windows Any version |
| Recommendation |
Change the default password.
1. Open the SYS:\JAVA\SERVLETS\SERVLET.PROPERTIES file.
2. Change the username and password located in the following line in a section for ServletManager:
servlet.ServletManager.initArgs=datamethod=POST,user=servlet,password=manager,bgcolor
Refer to Novell Technical Information Document 10067329 for more information at http://support.novell.com/cgi-bin/search/searchtid.cgi?/10067329.htm |
| Related URL |
CVE-2001-1195 (CVE) |
| Related URL |
3697 (SecurityFocus) |
| Related URL |
7701 (ISS) |
|
