vendor:
GroupWise Messenger
by:
MC
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: GroupWise Messenger
Affected Version From: Novell GroupWise Messenger 2.0 Client
Affected Version To: Novell GroupWise Messenger 1.0 Client
Patch Exists: NO
Related CWE: CVE-2008-2703
CPE: a:novell:groupwise_messenger
Platforms Tested: Windows
2008
Novell GroupWise Messenger Client Buffer Overflow
This module exploits a stack buffer overflow in Novell's GroupWise Messenger Client. By sending a specially crafted HTTP response, an attacker may be able to execute arbitrary code.
Mitigation:
Apply the patch provided by the vendor.
