CVE-2001-1231

Description

GroupWise 5.5 and 6 running in live remote or smart caching mode allows remote attackers to read arbitrary users' mailboxes by extracting usernames and passwords from sniffed network traffic, as addressed by the "Padlock" fix.

Affected products

• Novell / groupwise5.5 – 5.5
• Novell / groupwise6.0 – 6.0

References

• MISChttp://www.securityfocus.com/archive/1/204672
• MISChttp://www.securityfocus.com/bid/3189
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6998
• MISChttp://support.novell.com/padlock/details.htm