Vulnerability Description
Multiple stack-based buffer overflows in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via a long (1) LIST or (2) LSUB command.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Groupwise | <= 8.0.2 |
Related Weaknesses (CWE)
References
- http://www.facebook.com/note.php?note_id=477865030928
- http://www.novell.com/support/viewContent.do?externalId=7007157&sliceId=1Vendor Advisory
- http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=19Exploit
- https://bugzilla.novell.com/show_bug.cgi?id=635294
- http://www.facebook.com/note.php?note_id=477865030928
- http://www.novell.com/support/viewContent.do?externalId=7007157&sliceId=1Vendor Advisory
- http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=19Exploit
- https://bugzilla.novell.com/show_bug.cgi?id=635294
FAQ
What is CVE-2010-4717?
CVE-2010-4717 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Multiple stack-based buffer overflows in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allow remote attackers to execute arbitrary code via a long (1) ...
How severe is CVE-2010-4717?
CVE-2010-4717 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-4717?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Groupwise.