CVE-2010-4326

CWE-119Buffer Overflow4 documents4 sources
Severity
10.0CRITICAL
EPSS
27.7%
top 3.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Groupwise
Timeline
PublishedJan 28
Latest updateMay 17

Description

Multiple buffer overflows in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via variables in a VCALENDAR message, as demonstrated by a long (1) REQUEST-STATUS, (2) TZNAME, (3) COMMENT, or (4) RRULE variable in this message.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDnovell/groupwise8.0.2+22

🔴Vulnerability Details

2
GHSA
GHSA-729q-jrf3-mhg8: Multiple buffer overflows in gwwww12022-05-17
CVEList
CVE-2010-4326: Multiple buffer overflows in gwwww12011-01-28

💬Community

1
Bugzilla
CVE-2010-1086 kernel: dvb-core: DoS bug in ULE decapsulation code2010-03-01
CVE-2010-4326 (CRITICAL CVSS 10) | Multiple buffer overflows in gwwww1 | cvebase.io