CVE-2010-4713

2022-10-0316:21:06

mitre

www.cve.org

groupwise internet agent

remote attackers

arbitrary code

7.6 High

AI Score

Confidence

High

0.293 Low

EPSS

Percentile

96.9%

JSON

Integer signedness error in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allows remote attackers to execute arbitrary code via a signed integer value in the Content-Type header.

References

www.facebook.com/note.php?note_id=477865030928

www.novell.com/support/viewContent.do?externalId=7007154&sliceId=1

zerodayinitiative.com/advisories/ZDI-10-241/

bugzilla.novell.com/show_bug.cgi?id=642338