Novell Apache on NetWare 2.0.48
Novell NetWare 6.5 Support Pack 5
Novell NetWare 6.5 Support Pack 6
A potential Cross-Site Scripting vulnerability has been reported against the Welcome web-app on NetWare 6.5.
This was resolved with NetWare 6.5 Support Pack 7 and newer.
Another work-around is to disable the Welcome web-app.
To disable the Welcome Web-app, remark out the following line in SYS:APACHE2/CONF/HTTPD.CONF:
by putting a'#' character in front of it, like this:
StatusReported to Engineering