Messenger Agents (nmma.exe) in Novell GroupWise 2.0.2 and 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings in blowfish routines."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell groupwise messenger 1.0.6 |
||
novell groupwise messenger 2.0.2 |