Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-0271
HistorySep 19, 2012 - 10:57 a.m.

CVE-2012-0271

2012-09-1910:57:01
CWE-189
[email protected]
web.nvd.nist.gov
103
cve-2012-0271
groupwise
internet agent
gwia
novell
integer overflow
remote code execution
buffer overflow
webconsole
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.114 Low

EPSS

Percentile

95.3%

JSON

Integer overflow in the WebConsole component in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before 8.0.3 HP1 and 2012 before SP1 might allow remote attackers to execute arbitrary code via a crafted request that triggers a heap-based buffer overflow, as demonstrated by a request with -1 in the Content-Length HTTP header.

Affected configurations

NVD
Node
novellgroupwiseMatch8.0
OR
novellgroupwiseMatch8.01
OR
novellgroupwiseMatch8.01hp
OR
novellgroupwiseMatch8.02
OR
novellgroupwiseMatch8.02hp1
OR
novellgroupwiseMatch8.02hp2
OR
novellgroupwiseMatch8.02hp3
OR
novellgroupwiseMatch8.03
Node
novellgroupwiseMatch2012
Node
novellgroupwiseMatch5.2
OR
novellgroupwiseMatch5.5
OR
novellgroupwiseMatch5.57e
OR
novellgroupwiseMatch6.0
OR
novellgroupwiseMatch6.0.1sp1
OR
novellgroupwiseMatch6.5
OR
novellgroupwiseMatch6.5sp1
OR
novellgroupwiseMatch6.5sp2
OR
novellgroupwiseMatch6.5sp3
OR
novellgroupwiseMatch6.5sp4
OR
novellgroupwiseMatch6.5sp5
OR
novellgroupwiseMatch6.5sp6
OR
novellgroupwiseMatch6.5.2
OR
novellgroupwiseMatch6.5.3
OR
novellgroupwiseMatch6.5.4
OR
novellgroupwiseMatch6.5.6
OR
novellgroupwiseMatch6.5.7
OR
novellgroupwiseMatch7.0
OR
novellgroupwiseMatch7.0.3hp4
OR
novellgroupwiseMatch7.0.3hp5
OR
novellgroupwiseMatch7.0.4
OR
novellgroupwiseMatch7.0.4ftf
OR
novellgroupwiseMatch7.01
OR
novellgroupwiseMatch7.01ir1
OR
novellgroupwiseMatch7.02
OR
novellgroupwiseMatch7.02hp1
OR
novellgroupwiseMatch7.02hp1a
OR
novellgroupwiseMatch7.02hp2
OR
novellgroupwiseMatch7.02hp2r1
OR
novellgroupwiseMatch7.03
OR
novellgroupwiseMatch7.03hp
OR
novellgroupwiseMatch7.03hp2
OR
novellgroupwiseMatch7.03hp3
OR
novellgroupwiseMatch7.03hp3\+ftf

Related

prion 1
checkpoint_advisories 1
cvelist 1
nvd 1
nessus 2
prion
prion
Integer overflow
2012-09-19 10:57:00
checkpoint_advisories
checkpoint_advisories
Novell GroupWise Internet Agent Content-length Integer Overflow (CVE-2012-0271)
2012-11-18 00:00:00
cvelist
cvelist
CVE-2012-0271
2012-09-19 10:00:00
nvd
nvd
CVE-2012-0271
2012-09-19 10:57:01
nessus
nessus
Novell GroupWise Internet Agent Request Content-Length Header Parsing Remote Overflow
2012-10-02 00:00:00
Novell GroupWise Internet Agent 8.x <= 8.0.2 HP3 / 12.x < 12.0.1 Multiple Vulnerabilities
2012-09-24 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.1 High

AI Score

Confidence

Low

0.114 Low

EPSS

Percentile

95.3%

JSON
Related for CVE-2012-0271
prion1checkpoint_advisories1cvelist1nvd1nessus2