CVE-2011-0334 β€” Improper Restriction of Operations within the Bounds of a Memory Buffer in Groupwise

CWE-119 β€” Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
18.2%
top 4.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Groupwise
Timeline
PublishedOct 8
Latest updateMay 17

Description

Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a long HTTP request for a .css file.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

β–ΆNVDnovell/groupwise8.0

πŸ”΄Vulnerability Details

2
GHSA
GHSA-pxfw-w5v6-pwxh: Stack-based buffer overflow in gwia↗2022-05-17
β–Ά
CVEList
CVE-2011-0334: Stack-based buffer overflow in gwia↗2011-10-08
β–Ά
CVE-2011-0334 β€” Novell Groupwise vulnerability | cvebase