CVE-2010-2778

Name of the Vulnerable Software and Affected Versions Novell GroupWise versions 7.x before 7.0 post-SP4 FTF Novell GroupWise versions 8.x before 8.0 SP2

Description The issue is related to a cross-site scripting (XSS) vulnerability in WebAccess, allowing remote attackers to inject arbitrary web script or HTML via a crafted message. This is associated with a "Javascript XSS exploit."

Recommendations For Novell GroupWise versions 7.x before 7.0 post-SP4 FTF, update to version 7.0 post-SP4 FTF or later. For Novell GroupWise versions 8.x before 8.0 SP2, update to version 8.0 SP2 or later.