CVE-2013-1086: XSS

First published: Fri Apr 19 2013(Updated: )

Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise before 8.0.3 HP3, and 2012 before SP2, allows remote attackers to inject arbitrary web script or HTML via vectors involving an onError attribute.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Novell GroupWise	=2012
Novell GroupWise	=2012-sp1
Novell GroupWise	=2012-sp1_hp1
Novell GroupWise	<=8.03
Novell GroupWise	=5.2
Novell GroupWise	=5.5
Novell GroupWise	=5.57e
Novell GroupWise	=6.0
Novell GroupWise	=6.0.1-sp1
Novell GroupWise	=6.5
Novell GroupWise	=6.5-sp1
Novell GroupWise	=6.5-sp2
Novell GroupWise	=6.5-sp3
Novell GroupWise	=6.5-sp4
Novell GroupWise	=6.5-sp5
Novell GroupWise	=6.5-sp6
Novell GroupWise	=6.5.2
Novell GroupWise	=6.5.3
Novell GroupWise	=6.5.4
Novell GroupWise	=6.5.6
Novell GroupWise	=6.5.7
Novell GroupWise	=7.0
Novell GroupWise	=7.0.3-hp4
Novell GroupWise	=7.0.3-hp5
Novell GroupWise	=7.0.4
Novell GroupWise	=7.0.4-ftf
Novell GroupWise	=7.01
Novell GroupWise	=7.01-ir1
Novell GroupWise	=7.02
Novell GroupWise	=7.02-hp1
Novell GroupWise	=7.02-hp1a
Novell GroupWise	=7.02-hp2
Novell GroupWise	=7.02-hp2r1
Novell GroupWise	=7.03
Novell GroupWise	=7.03-hp
Novell GroupWise	=7.03-hp2
Novell GroupWise	=7.03-hp3
Novell GroupWise	=7.03-hp3\+ftf
Novell GroupWise	=8.0
Novell GroupWise	=8.00-hp1
Novell GroupWise	=8.00-hp2
Novell GroupWise	=8.00-hp3
Novell GroupWise	=8.01
Novell GroupWise	=8.01-hp
Novell GroupWise	=8.02
Novell GroupWise	=8.02-hp1
Novell GroupWise	=8.02-hp2
Novell GroupWise	=8.02-hp3
Novell GroupWise	=8.03
Novell GroupWise	=8.03-hp1

Never miss a vulnerability like this again

Reference Links

collector/nvd-index
agent/references
agent/weakness
agent/author
agent/severity
agent/tags
agent/type
agent/event
agent/last-modified-date
vendor/novell
canonical/novell groupwise
version/novell groupwise/2012
version/novell groupwise/2012-sp1
version/novell groupwise/2012-sp1_hp1
version/novell groupwise/8.03
version/novell groupwise/5.2
version/novell groupwise/5.5
version/novell groupwise/5.57e
version/novell groupwise/6.0
version/novell groupwise/6.0.1-sp1
version/novell groupwise/6.5
version/novell groupwise/6.5-sp1
version/novell groupwise/6.5-sp2
version/novell groupwise/6.5-sp3
version/novell groupwise/6.5-sp4
version/novell groupwise/6.5-sp5
version/novell groupwise/6.5-sp6
version/novell groupwise/6.5.2
version/novell groupwise/6.5.3
version/novell groupwise/6.5.4
version/novell groupwise/6.5.6
version/novell groupwise/6.5.7
version/novell groupwise/7.0
version/novell groupwise/7.0.3-hp4
version/novell groupwise/7.0.3-hp5
version/novell groupwise/7.0.4
version/novell groupwise/7.0.4-ftf
version/novell groupwise/7.01
version/novell groupwise/7.01-ir1
version/novell groupwise/7.02
version/novell groupwise/7.02-hp1
version/novell groupwise/7.02-hp1a
version/novell groupwise/7.02-hp2
version/novell groupwise/7.02-hp2r1
version/novell groupwise/7.03
version/novell groupwise/7.03-hp
version/novell groupwise/7.03-hp2
version/novell groupwise/7.03-hp3
version/novell groupwise/7.03-hp3\+ftf
version/novell groupwise/8.0
version/novell groupwise/8.00-hp1
version/novell groupwise/8.00-hp2
version/novell groupwise/8.00-hp3
version/novell groupwise/8.01
version/novell groupwise/8.01-hp
version/novell groupwise/8.02
version/novell groupwise/8.02-hp1
version/novell groupwise/8.02-hp2
version/novell groupwise/8.02-hp3
version/novell groupwise/8.03-hp1

CVE-2013-1086: XSS

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact