Lucene search
SAINT CorporationSAINT:F77B48D2676342A94EBF9128E190FC17HistoryJul 07, 2008 - 12:00 a.m.
Novell GroupWise Messenger HTTP response handling buffer overflow
2008-07-0700:00:00
SAINT Corporation
www.saintcorporation.com
10
0.906 High
EPSS
Percentile
98.5%
Added: 07/07/2008
CVE: CVE-2008-2703
BID: 29602
OSVDB: 46041
Background
GroupWise Messenger is an instant messaging client for Novell GroupWise.
Problem
Novell GroupWise is affected by a buffer overflow vulnerability which could allow command execution when the client program processes specially crafted HTTP responses.
Resolution
Upgrade to GroupWise Messenger 2.0.3 Hot Patch 1.
References
<http://secunia.com/advisories/30576>
Limitations
Exploit works on Novell GroupWise Messenger 2.0.0 and requires a user to log into the exploit server from Novell GroupWise Messenger.
Platforms
Windows
Related
saint
saint
Novell GroupWise Messenger HTTP response handling buffer overflow
2008-07-07 00:00:00
Novell GroupWise Messenger HTTP response handling buffer overflow
2008-07-07 00:00:00
Novell GroupWise Messenger HTTP response handling buffer overflow
2008-07-07 00:00:00
checkpoint_advisories
checkpoint_advisories
prion
prion
Stack overflow
2008-06-13 19:41:00
packetstorm
packetstorm
Novell GroupWise Messenger Client Buffer Overflow
2009-11-26 00:00:00
cve
cve
CVE-2008-2703
2008-06-13 19:41:00
nessus
nessus
Novell GroupWise Messenger Client < 2.0.3 HP1 Multiple Remote Overflows
2008-06-11 00:00:00
securityvulns
securityvulns
Novell GroupWise Messenger Client (GWIM) Remote Stack Overflow
2008-07-05 00:00:00