Vulnerability Description
The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote attackers to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be modified, which may reveal the server's internal IP address.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Netware | 6.5 |
| Novell | Groupwise | 6.0 |
References
- http://osvdb.org/45742
- http://www.vupen.com/english/advisories/2007/2388
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35365
- https://secure-support.novell.com/KanisaPlatform/Publishing/370/3555327_f.SAL_Pu
- http://osvdb.org/45742
- http://www.vupen.com/english/advisories/2007/2388
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35365
- https://secure-support.novell.com/KanisaPlatform/Publishing/370/3555327_f.SAL_Pu
FAQ
What is CVE-2007-3571?
CVE-2007-3571 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The Apache Web Server as used in Novell NetWare 6.5 and GroupWise allows remote attackers to obtain sensitive information via a certain directive to Apache that causes the HTTP-Header response to be m...
How severe is CVE-2007-3571?
CVE-2007-3571 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3571?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Netware, Novell Groupwise.