CVE-2010-4326 Information

Feb 14, 2021 cve

Description

Multiple buffer overflows in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via variables in a VCALENDAR message as demonstrated by a long (1) REQUEST-STATUS (2) TZNAME (3) COMMENT or (4) RRULE variable in this message.

Reference

http://www.facebook.com/note.php?note_id=477865030928 http://www.novell.com/support/viewContent.do?externalId=7007155&sliceId=1 http://www.securityfocus.com/bid/45994 http://www.vupen.com/english/advisories/2011/0219 http://www.zerodayinitiative.com/advisories/ZDI-11-025/ http://zerodayinitiative.com/advisories/ZDI-10-239/ http://zerodayinitiative.com/advisories/ZDI-10-240/ http://zerodayinitiative.com/advisories/ZDI-10-243/ https://bugzilla.novell.com/show_bug.cgi?id=642339 https://bugzilla.novell.com/show_bug.cgi?id=642340 https://bugzilla.novell.com/show_bug.cgi?id=642345 https://bugzilla.novell.com/show_bug.cgi?id=642349 https://exchange.xforce.ibmcloud.com/vulnerabilities/64929

Share on: