Novell GroupWise WebAccess Arbitrary File Download (local check)
High Nessus Plugin ID 50695
SynopsisThe remote host has an application that is susceptible to a directory traversal attack.
DescriptionThe installed version of GroupWise WebAccess fails to perform sufficient validation on a user specified file name supplied via the 'filename' parameter before returning the contents of the file.
By supplying directory traversal strings such as '../' in a specially crafted 'GET' request, it may be possible for an attacker to read arbitrary files from the remote system.
SolutionApply 8.02 Hot Patch 1 or later.