Novell Groupwise GWPOA HTTP Request: Remote Code Execution Vulnerability

Users of Novell Groupwise please be advised of a Remote Code Execution vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (

ZDI-10-247: [ZDI-10-247] Novell Groupwise GWPOA HTTP Request Remote Code Execution Vulnerability

— Affected Products:
Novell Groupwise
— Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Novell Groupwise. Authentication is not
required to exploit this vulnerability.