PT-2009-4120 · Novell · Novell Groupwise

Published

2009-05-26

Updated

2018-10-10

CVE-2009-1636

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Novell GroupWise versions 7.x through 7.03 HP2 and versions 8.x through 8.0 HP1

Description: The issue is related to multiple buffer overflows in the Internet Agent component. Remote attackers can execute arbitrary code via a crafted e-mail address in an SMTP session or an SMTP command.

Recommendations: For Novell GroupWise versions 7.x through 7.03 HP2, update to version 7.03 HP3 or later. For Novell GroupWise versions 8.x through 8.0 HP1, update to version 8.0 HP2 or later.

Fix

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2009-1636

Affected Products

Novell Groupwise

PT-2009-4120 · Novell · Novell Groupwise

CVE-2009-1636

Weakness Enumeration

Related Identifiers

Affected Products

References · 18