CVE-2010-4713 Information

Description

Integer signedness error in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allows remote attackers to execute arbitrary code via a signed integer value in the Content-Type header.

Reference

http://www.facebook.com/note.php?note_id=477865030928 http://www.novell.com/support/viewContent.do?externalId=7007154&sliceId=1 http://zerodayinitiative.com/advisories/ZDI-10-241/ https://bugzilla.novell.com/show_bug.cgi?id=642338