Novell GroupWise GWWEB.EXE/GWINTER.NLM Overflow

1999-12-19T00:00:00
ID OSVDB:3415
Type osvdb
Reporter OSVDB
Modified 1999-12-19T00:00:00

Description

Vulnerability Description

Novell Groupwise contains a flaw that allows a remote attacker to overflow the GWWEB.EXE program. By appending 512 or more characters to the end of a request, the program may crash or execute arbitrary code.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: remove the GWWEB.EXE application or deny access to it.

Short Description

Novell Groupwise contains a flaw that allows a remote attacker to overflow the GWWEB.EXE program. By appending 512 or more characters to the end of a request, the program may crash or execute arbitrary code.

Manual Testing Notes

http://[victim]/cgi-bin/GW5/GWWEB.EXE?[512+ chars]

References:

Bugtraq ID: 879