Novell GroupWise Authentication Credentials MiTM Disclosure
Medium Nessus Plugin ID 25769
SynopsisThe remote Windows host contains an application that is affected by an information disclosure vulnerability.
DescriptionThe version of the Novell GroupWise Client installed on the remote host reportedly allows a remote attacker to intercept authentication credentials via a man-in-the-middle attack.
SolutionUpgrade GroupWise clients to GroupWise 7 SP2 dated May 24, 2007 or newer / 6.5 post-SP6 dated May 22, 2007 or newer.