Buffer overflow in Novell GroupWise 7 allows remote malicious users to cause a denial of service or execute arbitrary code via a long argument in a mailto: URI.
PRODUCT: GroupWise 70
OS: Windows Xp
The scheme "mailto" is vulnerable if one takes as default mail client to
GroupWise, the fault is to implement the scheme followed by an extensive
argument and this causes the buffer overflow This brings the consequence that
can overwrite the EIP and is able to execute arbitrary code The result with a
deb ...