Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:C167B2BFF79CC1A0D6E4C37080D603F8
HistoryAug 03, 2010 - 12:00 a.m.

Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow

2010-08-0300:00:00
SAINT Corporation
www.saintcorporation.com
15

0.047 Low

EPSS

Percentile

92.7%

JSON

Added: 08/03/2010
CVE: CVE-2010-2777
BID: 41704
OSVDB: 66623

Background

Novell GroupWise is an e-mail and collaboration product suite.

Problem

A buffer overflow vulnerability exists within the IMAP component of the Novell GroupWise Internet Agent service and is due to a boundary error while handling a provided mailbox name for the CREATE command. An authenticated attacker could exploit this vulnerability by sending a crafted message to the server.

Resolution

Update or apply the patch as specified in the Novell advisory.

References

<http://www.zerodayinitiative.com/advisories/ZDI-10-129&gt;

Limitations

Exploit works on Novell GroupWise 8.0.

A valid IMAP user must be provided to the exploit script.

Platforms

Windows

Related

cvelist 1
saint 3
prion 1
nvd 1
zdi 1
cve 1
cvelist
cvelist
CVE-2010-2777
2022-10-03 16:21:06
saint
saint
Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow
2010-08-03 00:00:00
Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow
2010-08-03 00:00:00
Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow
2010-08-03 00:00:00
prion
prion
Stack overflow
2011-01-28 22:00:00
nvd
nvd
CVE-2010-2777
2011-01-28 22:00:04
zdi
zdi
Novell Netware Groupwise Internet Gateway Remote Code Execution Vulnerability
2010-07-16 00:00:00
cve
cve
CVE-2010-2777
2022-10-03 16:21:06

0.047 Low

EPSS

Percentile

92.7%

JSON
Related for SAINT:C167B2BFF79CC1A0D6E4C37080D603F8
cvelist1saint3prion1nvd1zdi1cve1