Integer overflow in the WebConsole component in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 prior to 8.0.3 HP1 and 2012 before SP1 might allow remote malicious users to execute arbitrary code via a crafted request that triggers a heap-based buffer overflow, as demonstrated by a request with -1 in the Content-Length HTTP header.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
novell groupwise 8.02 |
||
novell groupwise 8.03 |
||
novell groupwise 8.01 |
||
novell groupwise 8.0 |
||
novell groupwise 2012 |
||
novell groupwise 7.03 |
||
novell groupwise 7.0.4 |
||
novell groupwise 7.02 |
||
novell groupwise 7.01 |
||
novell groupwise 6.5.4 |
||
novell groupwise 6.5.7 |
||
novell groupwise 5.5 |
||
novell groupwise 5.2 |
||
novell groupwise 7.0 |
||
novell groupwise 7.0.3 |
||
novell groupwise 6.5 |
||
novell groupwise 6.0.1 |
||
novell groupwise 6.5.6 |
||
novell groupwise 6.5.3 |
||
novell groupwise 6.0 |
||
novell groupwise 5.57e |
||
novell groupwise 6.5.2 |
Vulmon