Описание
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.
Ссылки
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
- Patch
- Vendor Advisory
- Vendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:novell:groupwise:6.5:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:7.0:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:7.01:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:7.02x:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:7.03:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:7.03:hp1a:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0:*:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.18317
Средний
10 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.
EPSS
Процентиль: 95%
0.18317
Средний
10 Critical
CVSS2
Дефекты
CWE-119