| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.9 | $0-$5k | 0.00 |
Summary
A vulnerability has been found in Novell GroupWise and classified as problematic. Affected is an unknown function. Performing a manipulation of the argument User.interface results in path traversal. This vulnerability is identified as CVE-2012-0410. Additionally, an exploit exists. The affected component should be upgraded.
Details
A vulnerability was found in Novell GroupWise (Groupware Software). It has been classified as problematic. This affects an unknown part. The manipulation of the argument User.interface with an unknown input leads to a path traversal vulnerability. CWE is classifying the issue as CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. This is going to have an impact on confidentiality, and integrity. The summary by CVE is:
Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter.
The weakness was released 06/28/2012 by Tim Brown with Portcullis CSL as 7000708 as confirmed advisory (Website). It is possible to read the advisory at novell.com. The public release was coordinated with Novell. This vulnerability is uniquely identified as CVE-2012-0410 since 01/09/2012. The exploitability is told to be easy. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. Technical details and a private exploit are known. The attack technique deployed by this issue is T1006 according to MITRE ATT&CK.
It is declared as proof-of-concept. The vulnerability scanner Nessus provides a plugin with the ID 59968 (Novell GroupWise WebAccess User.interface Directory Traversal), which helps to determine the existence of the flaw in a target environment. It is assigned to the family CGI abuses.
Upgrading to version 8.0 Support Pack 3 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (76665), Tenable (59968), SecurityFocus (BID 54253†), OSVDB (83495†) and Secunia (SA49796†). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Vendor
Name
Version
License
Support
Website
- Vendor: https://www.novell.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.5VulDB Meta Temp Score: 5.9
VulDB Base Score: 6.5
VulDB Temp Score: 5.9
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Path traversalCWE: CWE-22
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Private
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 59968
Nessus Name: Novell GroupWise WebAccess User.interface Directory Traversal
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 801960
OpenVAS Name: Novell Groupwise WebAccess User.interface Parameter Directory Traversal Vulnerability
OpenVAS File: 🔍
OpenVAS Family: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: GroupWise 8.0 Support Pack 3
McAfee IPS: 🔍
McAfee IPS Version: 🔍
PaloAlto IPS: 🔍
Fortigate IPS: 🔍
Timeline
01/09/2012 🔍06/28/2012 🔍
06/28/2012 🔍
06/28/2012 🔍
07/02/2012 🔍
07/02/2012 🔍
07/02/2012 🔍
07/04/2012 🔍
07/05/2012 🔍
07/13/2012 🔍
07/19/2012 🔍
03/26/2021 🔍
Sources
Vendor: novell.comAdvisory: 7000708
Researcher: Tim Brown
Organization: Portcullis CSL
Status: Confirmed
Confirmation: 🔍
Coordinated: 🔍
CVE: CVE-2012-0410 (🔍)
GCVE (CVE): GCVE-0-2012-0410
GCVE (VulDB): GCVE-100-5631
X-Force: 76665
SecurityFocus: 54253
Secunia: 49796 - Novell GroupWise WebAccess "User.interface" File Disclosure Vulnerability, Less Critical
OSVDB: 83495
SecurityTracker: 1027217 - Novell GroupWise WebAccess Directory Traversal Flaw Lets Remote Users View Files
Vulnerability Center: 35601 - Novell GroupWise before 8.03 Remote Directory Traversal Vulnerability Allows Information Disclosure, Medium
scip Labs: https://www.scip.ch/en/?labs.20161013
Entry
Created: 07/04/2012 17:59Updated: 03/26/2021 07:29
Changes: 07/04/2012 17:59 (80), 04/14/2017 14:31 (11), 03/26/2021 07:29 (3)
Complete: 🔍
Cache ID: 216:685:103
No comments yet. Languages: en.
Please log in to comment.