Lucene search
This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.GROUPWISE_IA_CVE-2012-0271.NBINHistoryOct 02, 2012 - 12:00 a.m.
Novell GroupWise Internet Agent Request Content-Length Header Parsing Remote Overflow
2012-10-0200:00:00
This script is Copyright (C) 2012-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
The version of Novell GroupWise Internet Agent hosted on the remote host is affected by a buffer overflow vulnerability due to the way the application handles the Content-Length HTTP header when it contains the value -1. By exploiting this flaw, a remote, unauthenticated attacker could execute arbitrary code on the remote host subject to the privileges of the user running the affected application.
Note that this version of GroupWise Internet Agent likely has other vulnerabilities (i.e., CVE-2012-0419), but Nessus has not checked for those issues.
Binary data groupwise_ia_cve-2012-0271.nbinRelated
checkpoint_advisories
checkpoint_advisories
Novell GroupWise HTTP Interfaces Arbitrary File Retrieval (CVE-2012-0419)
2013-03-04 00:00:00
cvelist
cvelist
CVE-2012-0271
2012-09-19 10:00:00
CVE-2012-0419
2012-09-28 10:00:00
prion
prion
Integer overflow
2012-09-19 10:57:00
Directory traversal
2012-09-28 10:40:00
cve
cve
CVE-2012-0271
2012-09-19 10:57:00
CVE-2012-0419
2012-09-28 10:40:00
securityvulns
securityvulns
DDIVRT-2012-42 Novell GroupWise Agents Arbitrary File Retrieval (CVE-2012-0419)
2012-10-04 00:00:00
Novell Groupwise directory traversal
2012-10-04 00:00:00
nessus
nessus
Related for GROUPWISE_IA_CVE-2012-0271.NBIN