Three potential security vulnerabilities may exist in Novell NetStorage
1. A Cross-Site Scripting vulnerability was reported which affects both NetWare and OES Linux on OES, OES2, and OES2 Support Pack 1
2. A File Path disclosure may exist when using the mail option which affects both NetWare and OES Linux on OES, OES2, and OES2 Support Pack 1
3. A potential Denial of Service attack may exist, currently, this has only been seen on NetWare.
The patch has been released on the download.novell.com site