Novell GroupWise contains a flaw that may allow a user to bypass Windows and ZenWorks secuity policies in order to gain access to local and network files. The issue is due to the GroupWise client using an API which does not honour system policies. The flaw may allow a user to view or manipulate files which would otherwise be protected by policy, resulting in a loss of confidentiality and/or integrity.
Upgrade to version 5.5 EP SP3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.