Lucene search

PRIOn knowledge basePRION:CVE-2011-4189

HistoryMar 02, 2012 - 10:55 p.m.

Memory corruption

2012-03-0222:55:00

PRIOn knowledge base

www.prio-n.com

8.4 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.259 Low

EPSS

Percentile

96.6%

JSON

The client in Novell GroupWise 8.0x through 8.02HP3 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via a long e-mail address in an Address Book (aka .NAB) file.

CPENameOperatorVersion
groupwiseeq8.0 hp1
groupwiseeq8.0.2
groupwiseeq8.0.1
groupwiseeq8.0
groupwiseeq8.0 hp2
groupwiseeq8.0 sp1
groupwiseeq8.0.2 hp1

Name	Operator	Version
groupwise	eq	8.0 hp1
groupwise	eq	8.0.2
groupwise	eq	8.0.1
groupwise	eq	8.0
groupwise	eq	8.0 hp2
groupwise	eq	8.0 sp1
groupwise	eq	8.0.2 hp1

References

osvdb.org/79720

secunia.com/advisories/48199

www.novell.com/support/viewContent.do?externalId=7010205

www.protekresearchlab.com/index.php?option=com_content&view=article&id=37&Itemid=37

www.securityfocus.com/bid/52233

www.securitytracker.com/id?1026753

bugzilla.novell.com/show_bug.cgi?id=733885

exchange.xforce.ibmcloud.com/vulnerabilities/73588

8.4 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.259 Low

EPSS

Percentile

96.6%

JSON

Related for PRION:CVE-2011-4189