Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
|
|
|
|
|
|
|
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
|
|
|
|
Become a Partner and License Our Database or Notification Service
|
|
|
|
|
|
|
|
|
|
|
|
|
Novell GroupWise Server Contains an Unspecified Security Flaw
|
|
SecurityTracker Alert ID: 1002199 |
|
SecurityTracker URL: http://securitytracker.com/id/1002199
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Aug 15 2001
|
Impact:
Not specified
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): GroupWise 5.5 Enhancement Pack and GroupWise 6
|
Description:
Novell announced a "security issue" in its GroupWise collaboration software, but did not disclose what the flaw was.
Novell is warning customers that they should download a Server Padlock fix. A Client Padlock fix is also available, but the flaw is reportedly on the server side.
GroupWise 4.x, 5.0, 5.2, and 5.5 servers and clients are reportedly not affected.
Novell has provided no further details.
|
Impact:
Novell has not released any information regarding the impact of this security vulnerability. However, they are recommending that all affected customers apply the appropriate patch.
|
Solution:
The vendor has provided patches, which are available at the Vendor URL.
|
Vendor URL: support.novell.com/padlock (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
Windows (NT), Windows (2000)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 14 Aug 2001 21:39:06 -0500
Subject: Fwd: Security Alert: Groupwise - Action Required
|
I don't know if there is anyone running Groupwise anymore (I guess I'd be
surprised) but this is worth a look if you are.
-Mike
>X-Mailer: Novell GroupWise Internet Agent 6.0
>Date: Tue, 14 Aug 2001 17:31:33 -0600
>From: DeveloperNet Subscribers <devnet_connect@novell.com>
>To: mshaw@wwisp.com
>Subject: Security Alert: Groupwise - Action Required
>Reply-To: devnet_connect@novell.com
>X-MIME-Autoconverted: from quoted-printable to 8bit by mail2.wwisp.com id
>f7F20NF16045
>
>Novell has discovered a security issue with GroupWise. This issue only
>affects GroupWise 5.5 Enhancement Pack and GroupWise 6 customers. A fix,
>called the Padlock Fix, has been developed and is available on Novell's
>support Web site at: http://support.novell.com/padlock
>
>We have sent a message to all GroupWise customers for whom we have contact
>information. If you have customers who are running GroupWise, please call
>them, inform them of this issue, and ask them to download the Server
>Padlock Fix immediately. There is both a server and client fix. Once the
>Server Padlock Fix is applied, that server and its corresponding
>workstations are secured. The Client Padlock Fix then needs to be applied
>to return the overall system to optimum performance. Again, we recommend
>that all of your customers apply the Server Padlock Fix immediately.
>
>Your customers may call Novell Technical Support free of charge at
>1.800.858.4000, for EMEA call 49.211.5632.744, for Asia/Pacific call
>61.2.9925.3000.
>
>Novell is not releasing details about the security issue at this time so
>that our customers have time to secure their systems. GroupWise 4.x, 5.0,
>5.2, and 5.5 servers and clients are not affected. Customers with these
>versions need not apply the fix.
>
>
>---
>You are currently subscribed as: [mshaw@wwisp.com]
>To unsubscribe, please visit http://developer.novell.com/email
|
|
Go to the Top of This SecurityTracker Archive Page
|
