Novell Groupwise Windows Client API Unauthorized Email Access Vulnerability

info
discussion
exploit
solution
references

Novell Groupwise Windows Client API Unauthorized Email Access Vulnerability

The Groupwise Windows Client API has an unspecified vulnerability that allows an attacker to bypass security controls and gain unauthorized access to email stores.

An attacker can exploit this issue to access email of another user in the same authenticated post office.