SI
SI
discoversearch

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor.  We ask that you disable ad blocking while on Silicon Investor in the best interests of our community.  If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.
Technology Stocks : BUG ALERT -- Ignore unavailable to you. Want to Upgrade?

To: Milk who wrote (18)11/13/1998 7:53:00 PM
From: Cheeky Kid  Read Replies (1) | Respond to of 24
 
Novell GroupWise 5.x Bug Can Cause Security Holes and GPFs

TESTS PERFORMED at BugNet's request have confirmed a dangerous and persistent bug in at least two versions of Novell GroupWise 5.

In GroupWise 5.1, if you are viewing an attachment to a message in a shared folder and hit Ctrl-M to compose a new mail message, the message window may appear with the From address containing the name of the owner of the shared folder that you are currently in, instead of your own name.

This makes it possible for someone to send mail that appears to be from someone else, raising the possibility for all sorts of confusion if not outright mischief.

Novell fixed the bug in GroupWise 5.2, but tests performed by KeyLabs, the world's largest independent PC testing facility, reveal that the bug has reappeared in GroupWise version 5.5 in a different form. If you perform the steps described above in GroupWise 5.5, you are likely to get a General Protection Fault.

The problem does not occur if the attachment is opened, or if it is not in a shared folder.

No word from Novell yet on when a fix may be available, but it's already too late for HBO, the organization which originally brought the problem to BugNet's attention.

According to HBO's Joseph Maddison in Minneapolis, "Actually, we've just switched to [Microsoft] Outlook, so it doesn't really pose a problem for us now."

– Bruce Brown
bugnet.com



To: Milk who wrote (18)11/13/1998 9:26:00 PM
From: Cheeky Kid  Respond to of 24
 
HYPE ALERT

kumite.com



To: Milk who wrote (18)11/19/1998 1:56:00 AM
From: Cheeky Kid  Read Replies (1) | Respond to of 24
 
A Trojan Disguised as SSH Exploit

ssh.fi


HomeMailHotSubjectMarksPeopleMarksKeepersSettings
Terms Of UseContact UsCopyright/IP PolicyPrivacy PolicyAbout UsFAQAdvertise on SI
© 2025 Knight Sac Media.  Data provided by Twelve Data, Alpha Vantage, and CityFALCON News