Published: 02/03/2012 Updated: 11/01/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The client in Novell GroupWise 8.0x up to and including 8.02HP3 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via a long e-mail address in an Address Book (aka .NAB) file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
novell groupwise 8.0
novell groupwise 8.0.2
novell groupwise 8.0.1

##################################################################################### Application: Novell Groupwise Address Book Remote Code Execution Platforms: Windows Exploitation: Remote code execution CVE Number: 2011-4189 Novell TID: 733885 {PRL}: 2012-04 Author: Francis Provencher (Protek Research Lab's) Website: http ...

CWE-94 https://bugzilla.novell.com/show_bug.cgi?id=733885 http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=37&Itemid=37 http://www.novell.com/support/viewContent.do?externalId=7010205 http://www.securityfocus.com/bid/52233 http://osvdb.org/79720 https://exchange.xforce.ibmcloud.com/vulnerabilities/73588 http://www.securitytracker.com/id?1026753 http://secunia.com/advisories/48199 https://nvd.nist.gov https://www.exploit-db.com/exploits/18546/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-4189

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect