Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-2662
cve-2011-2662
novell groupwise
gwia
groupwise 8.0
remote code execution
vcalendar attachment
integer signedness error
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.632 Medium
EPSS
Percentile
97.9%
Integer signedness error in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a negative BYWEEKNO property in a weekly RRULE variable in a VCALENDAR attachment in an e-mail message.
Affected configurations
Node
novellgroupwiseMatch8.0
ORnovellgroupwiseMatch8.0hp1
ORnovellgroupwiseMatch8.0hp2
| CPE | Name | Operator | Version |
|---|---|---|---|
| novell:groupwise | novell groupwise | eq | 8.0 |
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Integer overflow
2011-10-08 02:52:00
nvd
nvd
CVE-2011-2662
2011-10-08 02:52:52
securityvulns
securityvulns
cvelist
cvelist
CVE-2011-2662
2022-10-03 16:15:15
nessus
nessus
GroupWise Internet Agent < 8.0.2 HP3 Multiple Vulnerabilities
2011-10-04 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.632 Medium
EPSS
Percentile
97.9%
Related for CVE-2011-2662