CVE-2010-2777

2011-01-2822:00:04

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.084

Percentile

94.5%

JSON

Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command.

Affected configurations

Nvd

Node

novellgroupwiseMatch7.0sp1

novellgroupwiseMatch7.0sp2

novellgroupwiseMatch7.0sp3

novellgroupwiseMatch7.0sp4

novellgroupwiseMatch8.0

novellgroupwiseMatch8.0sp1

VendorProductVersionCPE
novellgroupwise7.0cpe:2.3:a:novell:groupwise:7.0:sp1:*:*:*:*:*:*
novellgroupwise7.0cpe:2.3:a:novell:groupwise:7.0:sp2:*:*:*:*:*:*
novellgroupwise7.0cpe:2.3:a:novell:groupwise:7.0:sp3:*:*:*:*:*:*
novellgroupwise7.0cpe:2.3:a:novell:groupwise:7.0:sp4:*:*:*:*:*:*
novellgroupwise8.0cpe:2.3:a:novell:groupwise:8.0:*:*:*:*:*:*:*
novellgroupwise8.0cpe:2.3:a:novell:groupwise:8.0:sp1:*:*:*:*:*:*

Vendor	Product	Version	CPE
novell	groupwise	7.0	cpe:2.3:a:novell:groupwise:7.0:sp1::::::
novell	groupwise	7.0	cpe:2.3:a:novell:groupwise:7.0:sp2::::::
novell	groupwise	7.0	cpe:2.3:a:novell:groupwise:7.0:sp3::::::
novell	groupwise	7.0	cpe:2.3:a:novell:groupwise:7.0:sp4::::::
novell	groupwise	8.0	cpe:2.3:a:novell:groupwise:8.0:::::::*
novell	groupwise	8.0	cpe:2.3:a:novell:groupwise:8.0:sp1::::::