This vulnerability was announced by Frank Bulk <firstname.lastname@example.org> on February 20, 2002.
Novell Groupwise 6.0
GroupWise 6 is a directory service available from Novell. It is designed for use on the Microsoft Windows platforms.
When GroupWise is executed as any user, and the password field is left blank, it is possible to gain access to the account of the user without authenication. This problem occurs when GroupWise has been configured to use LDAP authentication and the security configuration of PostOffice leaves the LDAP username and password fields blank.