Lucene search

[email protected]CVE-2010-4326

HistoryJan 28, 2011 - 9:00 p.m.

CVE-2010-4326

2011-01-2821:00:28

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-4326

buffer overflow

gwwww1.dll

novell groupwise

gwia

remote code execution

vcalendar

security vulnerability

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.748 High

EPSS

Percentile

98.2%

JSON

Multiple buffer overflows in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via variables in a VCALENDAR message, as demonstrated by a long (1) REQUEST-STATUS, (2) TZNAME, (3) COMMENT, or (4) RRULE variable in this message.

Affected configurations

NVD

Node

novellgroupwiseRange≤8.0.2

novellgroupwiseMatch4.1

novellgroupwiseMatch4.1a

novellgroupwiseMatch5.0

novellgroupwiseMatch5.1

novellgroupwiseMatch5.2

novellgroupwiseMatch5.5

novellgroupwiseMatch5.5enhancement_pack

novellgroupwiseMatch5.57e

novellgroupwiseMatch6.0

novellgroupwiseMatch6.0sp1

novellgroupwiseMatch6.0sp5

novellgroupwiseMatch6.0.1sp1

novellgroupwiseMatch6.5

novellgroupwiseMatch6.5sp1

novellgroupwiseMatch6.5sp2

novellgroupwiseMatch6.5sp3

novellgroupwiseMatch6.5sp4

novellgroupwiseMatch6.5sp5

novellgroupwiseMatch6.5sp6

novellgroupwiseMatch6.5.2

novellgroupwiseMatch6.5.3

novellgroupwiseMatch6.5.4

novellgroupwiseMatch6.5.6

novellgroupwiseMatch6.5.7

novellgroupwiseMatch7.0

novellgroupwiseMatch7.0.1

novellgroupwiseMatch7.0.2

novellgroupwiseMatch7.0.3

novellgroupwiseMatch7.0.4

novellgroupwiseMatch8.0

novellgroupwiseMatch8.0.1

CPENameOperatorVersion
novell:groupwisenovell groupwisele8.0.2
novell:groupwisenovell groupwiseeq4.1
novell:groupwisenovell groupwiseeq4.1a
novell:groupwisenovell groupwiseeq5.0
novell:groupwisenovell groupwiseeq5.1
novell:groupwisenovell groupwiseeq5.2
novell:groupwisenovell groupwiseeq5.5
novell:groupwisenovell groupwiseeq5.57e
novell:groupwisenovell groupwiseeq6.0
novell:groupwisenovell groupwiseeq6.0.1

CPE	Name	Operator	Version
novell:groupwise	novell groupwise	le	8.0.2
novell:groupwise	novell groupwise	eq	4.1
novell:groupwise	novell groupwise	eq	4.1a
novell:groupwise	novell groupwise	eq	5.0
novell:groupwise	novell groupwise	eq	5.1
novell:groupwise	novell groupwise	eq	5.2
novell:groupwise	novell groupwise	eq	5.5
novell:groupwise	novell groupwise	eq	5.57e
novell:groupwise	novell groupwise	eq	6.0
novell:groupwise	novell groupwise	eq	6.0.1

Rows per page:

1-10 of 231

References

www.facebook.com/note.php?note_id=477865030928

www.novell.com/support/viewContent.do?externalId=7007155&sliceId=1

www.securityfocus.com/bid/45994

www.vupen.com/english/advisories/2011/0219

www.zerodayinitiative.com/advisories/ZDI-11-025/

zerodayinitiative.com/advisories/ZDI-10-239/

zerodayinitiative.com/advisories/ZDI-10-240/

zerodayinitiative.com/advisories/ZDI-10-243/

bugzilla.novell.com/show_bug.cgi?id=642339

bugzilla.novell.com/show_bug.cgi?id=642340

bugzilla.novell.com/show_bug.cgi?id=642345

bugzilla.novell.com/show_bug.cgi?id=642349

exchange.xforce.ibmcloud.com/vulnerabilities/64929

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.748 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2010-4326

cvelist1 nvd1 zdi1 prion1 checkpoint_advisories1 nessus1