CVE-2008-2704

Name of the Vulnerable Software and Affected Versions Novell GroupWise Messenger (GWIM) versions prior to 2.0.3 Hot Patch 1

Description The issue allows remote attackers to cause a denial of service, potentially resulting in a crash, by providing a long user ID. This might involve triggering a popup alert. It is unclear whether this issue can cross privilege boundaries.

Recommendations For versions prior to 2.0.3 Hot Patch 1, update to version 2.0.3 Hot Patch 1 to resolve the issue. As a temporary workaround, consider restricting the length of the user ID to prevent potential crashes until the update is applied.