Novell GroupWise Client IP Port Registry Key Parsing Overflow

2005-09-27T01:00:05
ID OSVDB:19862
Type osvdb
Reporter Francisco Amato(famato@infobyte.com.ar)
Modified 2005-09-27T01:00:05

Description

Vulnerability Description

A local overflow exists in Novell GroupWise Client. The GroupWise Client fails to parse the 'IP Port' registry key resulting in a integer overflow. With a specially crafted Windows Registry key, an attacker can cause arbitrary code execution on the local system resulting in a loss of integrity.

Solution Description

Upgrade to version 6.5 (dated after 8/10/2005) or 6.5 SP5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A local overflow exists in Novell GroupWise Client. The GroupWise Client fails to parse the 'IP Port' registry key resulting in a integer overflow. With a specially crafted Windows Registry key, an attacker can cause arbitrary code execution on the local system resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1014977 Other Advisory URL: http://www.infobyte.com.ar/adv/ISR-13.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0763.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0712.html Keyword: TID10098814 ISS X-Force ID: 22419 CVE-2005-2804 Bugtraq ID: 14952