Description
Groupwise web server GWWEB.EXE allows remote attackers to determine the real path of the web server via the HELP parameter.
Affected products
- Novell / groupwise5.2 – 5.2
- Novell / groupwise5.5 – 5.5
References
- MAILING_LISThttp://marc.info/?l=bugtraq&m=94571433731824&w=2