CVE-2011-4189

The client in Novell GroupWise 8.0x through 8.02HP3 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via a long e-mail address in an Address Book (aka .NAB) file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:novell:groupwise:8.0:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0:hp1:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0:hp2:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0:sp1:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise:8.0.2:hp1:*:*:*:*:*:*

History

21 Nov 2024, 01:31

Type Values Removed Values Added
References () http://osvdb.org/79720 - () http://osvdb.org/79720 -
References () http://secunia.com/advisories/48199 - () http://secunia.com/advisories/48199 -
References () http://www.novell.com/support/viewContent.do?externalId=7010205 - Vendor Advisory () http://www.novell.com/support/viewContent.do?externalId=7010205 - Vendor Advisory
References () http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=37&Itemid=37 - Exploit () http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=37&Itemid=37 - Exploit
References () http://www.securityfocus.com/bid/52233 - () http://www.securityfocus.com/bid/52233 -
References () http://www.securitytracker.com/id?1026753 - () http://www.securitytracker.com/id?1026753 -
References () https://bugzilla.novell.com/show_bug.cgi?id=733885 - () https://bugzilla.novell.com/show_bug.cgi?id=733885 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/73588 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/73588 -

Information

Published : 2012-03-02 22:55

Updated : 2024-11-21 01:31


NVD link : CVE-2011-4189

Mitre link : CVE-2011-4189

CVE.ORG link : CVE-2011-4189


JSON object : View

Products Affected

novell

  • groupwise
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')