CVE-2006-3268 - Vulnerability Details - OpenCVE

Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain "random programmatic access" to other email within the same post office.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Novell	Groupwise

Configuration 1 [-]

OR	cpe:2.3:a:novell:groupwise:::32-bit_client:::::*
	cpe:2.3:a:novell:groupwise:5.2:::::::*
	cpe:2.3:a:novell:groupwise:5.5:::::::*
	cpe:2.3:a:novell:groupwise:6.0:::::::*
	cpe:2.3:a:novell:groupwise:6.0:sp1::::::
	cpe:2.3:a:novell:groupwise:6.0:sp2::::::
	cpe:2.3:a:novell:groupwise:6.0:sp3::::::
	cpe:2.3:a:novell:groupwise:6.0:sp4::::::
	cpe:2.3:a:novell:groupwise:6.5:::::::*
	cpe:2.3:a:novell:groupwise:6.5:sp1::::::
	cpe:2.3:a:novell:groupwise:6.5:sp2::::::
	cpe:2.3:a:novell:groupwise:6.5:sp3::::::
	cpe:2.3:a:novell:groupwise:6.5:sp4::::::
	cpe:2.3:a:novell:groupwise:6.5:sp5::::::
	cpe:2.3:a:novell:groupwise:6.5.2:::::::*
	cpe:2.3:a:novell:groupwise:6.5.3:::::::*
	cpe:2.3:a:novell:groupwise:6.5.4:::::::*
	cpe:2.3:a:novell:groupwise:7.0:::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/20888
http://securitytracker.com/id?1016404
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm
http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm
http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm
http://www.securityfocus.com/archive/1/438725/100/0/threaded
http://www.securityfocus.com/bid/18716
http://www.vupen.com/english/advisories/2006/2594
https://exchange.xforce.ibmcloud.com/vulnerabilities/27550

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-06-29T17:00:00

Updated: 2024-08-07T18:23:21.190Z

Reserved: 2006-06-27T00:00:00

Link: CVE-2006-3268

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-06-29T17:05:00.000

Modified: 2024-11-21T00:13:12.950

Link: CVE-2006-3268

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-06-29T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain \"random programmatic access\" to other email within the same post office."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20060629 Novell Security Announcement NOVELL-SA:2006:001", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/438725/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm"}, {"name": "groupwise-windows-client-api-security-bypass(27550)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27550"}, {"name": "1016404", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1016404"}, {"name": "ADV-2006-2594", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2594"}, {"name": "18716", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18716"}, {"name": "20888", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20888"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3268", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain \"random programmatic access\" to other email within the same post office."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20060629 Novell Security Announcement NOVELL-SA:2006:001", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/438725/100/0/threaded"}, {"name": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm", "refsource": "CONFIRM", "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm"}, {"name": "http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm", "refsource": "CONFIRM", "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm"}, {"name": "groupwise-windows-client-api-security-bypass(27550)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27550"}, {"name": "1016404", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1016404"}, {"name": "ADV-2006-2594", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2594"}, {"name": "18716", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18716"}, {"name": "20888", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20888"}, {"name": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm", "refsource": "CONFIRM", "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:23:21.190Z"}, "title": "CVE Program Container", "references": [{"name": "20060629 Novell Security Announcement NOVELL-SA:2006:001", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/438725/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm"}, {"name": "groupwise-windows-client-api-security-bypass(27550)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27550"}, {"name": "1016404", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1016404"}, {"name": "ADV-2006-2594", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2594"}, {"name": "18716", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18716"}, {"name": "20888", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20888"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3268", "datePublished": "2006-06-29T17:00:00", "dateReserved": "2006-06-27T00:00:00", "dateUpdated": "2024-08-07T18:23:21.190Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:novell:groupwise:*:*:32-bit_client:*:*:*:*:*", "matchCriteriaId": "12D3C841-7EC9-4ABD-B695-E11254EED1D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "22426725-2204-4750-87F6-A57BA727F213", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:5.5:*:*:*:*:*:*:*", "matchCriteriaId": "A61E70C4-FE03-42AA-9F9B-C8DEB3E12F34", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "194704B6-4820-4398-8906-A1E529ED65AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.0:sp1:*:*:*:*:*:*", "matchCriteriaId": "5E0DC694-0DEB-41DE-8A0D-9B649FC2F220", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.0:sp2:*:*:*:*:*:*", "matchCriteriaId": "174646C1-60F8-4A84-9C0D-785303EBAF6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.0:sp3:*:*:*:*:*:*", "matchCriteriaId": "5F5DFFF8-7DCF-48E0-B43E-269EA4F3AE75", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.0:sp4:*:*:*:*:*:*", "matchCriteriaId": "A2F5DF0E-8158-4D2E-88CC-BBD7A031054E", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "2AD18143-9962-4C0D-AD3D-66C0CF3FB5D0", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5:sp1:*:*:*:*:*:*", "matchCriteriaId": "08A78BE7-6426-41CD-BBAF-9BB951726D33", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5:sp2:*:*:*:*:*:*", "matchCriteriaId": "E50599E1-45E5-443F-AAEC-F91778CA4792", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5:sp3:*:*:*:*:*:*", "matchCriteriaId": "F0BB62B7-C895-4AB6-9CEB-4B312E334953", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5:sp4:*:*:*:*:*:*", "matchCriteriaId": "A91EAC4C-8EEE-4050-B1AD-E677AD90327D", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5:sp5:*:*:*:*:*:*", "matchCriteriaId": "C7F65030-60A2-4EC2-A06D-EC5249FD9FA5", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "814CAE15-78D8-4205-AC95-E07385A7B3DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "251EAE31-9799-453A-ABF7-F3D1C6602A81", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:6.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "32AFA45E-7EA4-4067-BDB5-AB4391B3FE65", "vulnerable": true}, {"criteria": "cpe:2.3:a:novell:groupwise:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "FE640E9A-762B-4AF4-8677-818CBF16EA4E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Windows Client API in Novell GroupWise 5.x through 7 might allow users to obtain \"random programmatic access\" to other email within the same post office."}, {"lang": "es", "value": "Vulnerabilidad sin especificar en la API de cliente en Novell GroupWise para Windows v5.x a v7 podr\u00eda permitir a los usuarios obtener \"acceso program\u00e1tico aleatorio\" (random programmatic access) a correo electr\u00f3nico de otros del misma oficina de correos."}], "id": "CVE-2006-3268", "lastModified": "2024-11-21T00:13:12.950", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-06-29T17:05:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/20888"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1016404"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/438725/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/18716"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2594"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27550"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/20888"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1016404"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2973921.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?/2974006.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://support.novell.com/cgi-bin/search/searchtid.cgi?2974027.htm"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/438725/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/18716"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/2594"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27550"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}