=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2009/VULN385
_____________________________________________________________________

DATE                      : 18/09/2009

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running Novell GroupWise versions 7.x, 8.x.

======================================================================
http://www.novell.com/support/viewContent.do?externalId=7004410&sliceId=1
______________________________________________________________________

GroupWise WebAccess - Cross Site Scripting (XSS) Security
Vulnerability in User.Theme.index parameter

This document (7004410) is provided subject to the disclaimer
at the end of this document.

Environment

 GroupWise WebAccess is vulnerable to a cross-site scripting
(XSS) exploit via script injections in the User.Theme.index parameter,
which could potentially allow an attacker to redirect users to
a malicious site.


Affected versions:

GroupWise 7.0 up to (and including) 7.03 HP3
GroupWise 8.0 up to (and including) 8.0.0 HP2


This vulnerability was discovered and reported by Matt Foster - Netcraft,
Ltd. (http://www.netcraft.com)

Novell bugs 517592, 520671.  CVE number pending.


Resolution

To resolve this issue:

For GroupWise 7.x systems, apply GroupWise 7.03 Hot Patch 4 (HP4) or later
For GroupWise 8.0 systems, apply GroupWise 8.0 Support Pack 1 (SP1) or later


Status

Security Alert

Bug Number
517592, 520671

Document
Document ID:	7004410
Creation Date:	09-09-2009
Modified Date:	09-16-2009
Novell Product:	GroupWise


Disclaimer

The Origin of this information may be internal or external to Novell.
Novell makes all reasonable efforts to verify this information.
However, the information provided in this document is for your
information only. Novell makes no explicit or implied claims to
the validity of this information.
Any trademarks referenced in this document are the property of
their respective owners. Consult your product manuals for
complete trademark information.


======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================