Lucene search

[email protected]CVE-2011-0333

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2011-0333

2022-10-0316:15:20

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-0333

heap-based buffer overflow

ngwicalvtimezonebody

parseself

gwwww1.dll

novell groupwise 8.0

hp3

remote code execution

vcalendar

integer truncation error

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.196 Low

EPSS

Percentile

96.3%

JSON

Heap-based buffer overflow in the NgwiCalVTimeZoneBody::ParseSelf function in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a crafted TZNAME variable in a VCALENDAR attachment in an e-mail message, related to an “integer truncation error.”

Affected configurations

NVD

Node

novellgroupwiseMatch8.0

novellgroupwiseMatch8.0hp1

novellgroupwiseMatch8.0hp2

CPENameOperatorVersion
novell:groupwisenovell groupwiseeq8.0

CPE	Name	Operator	Version
novell:groupwise	novell groupwise	eq	8.0

References

secunia.com/secunia_research/2011-66/

www.novell.com/support/viewContent.do?externalId=7009208

bugzilla.novell.com/show_bug.cgi?id=678715

labs.idefense.com/verisign/intelligence/2009/vulnerabilities/display.php?id=943

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.196 Low

EPSS

Percentile

96.3%

JSON

Related for CVE-2011-0333

nvd1 cvelist1 securityvulns3 nessus2 prion1