Lucene search
{PRL} Francis ProvencherZDI-10-129HistoryJul 16, 2010 - 12:00 a.m.
Novell Netware Groupwise Internet Gateway Remote Code Execution Vulnerability
2010-07-1600:00:00
{PRL} Francis Provencher
www.zerodayinitiative.com
10
0.047 Low
EPSS
Percentile
92.7%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Groupwise Internet Agent. Authentication is required to exploit this vulnerability. The flaw exists within the IMAP functionality included with GWIA. When provided with an overly long mailbox name to the CREATE verb, the IMAP server can be forced to overflow a buffer on the stack. Successful exploitation leads to remote code execution under the context of the server.
Related
cvelist
cvelist
CVE-2010-2777
2022-10-03 16:21:06
saint
saint
Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow
2010-08-03 00:00:00
Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow
2010-08-03 00:00:00
Novell GroupWise Internet Agent IMAP Service Stack Buffer Overflow
2010-08-03 00:00:00
prion
prion
Stack overflow
2011-01-28 22:00:00
cve
cve
CVE-2010-2777
2022-10-03 16:21:06
nvd
nvd
CVE-2010-2777
2011-01-28 22:00:04