Signature Detail

Short Name	HTTP:NOVELL:GROUPWISE-NETAGT-BO
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Novell GroupWise Internet Agent HTTP Interface Stack Buffer Overflow
Release Date	2012/11/02
Update Number	2200
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Novell GroupWise Internet Agent HTTP Interface Stack Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the Novell GroupWise Internet Agent. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected server.

Extended Description

The Novell GroupWise Internet Agent is prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successful exploits will allow attackers to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.

Affected Products

Novell Groupwise 8.0
Novell Groupwise 8.01X
Novell Groupwise 8.02
Novell Groupwise 8.02 HP1
Novell Groupwise 8.02 HP2
Novell Groupwise 8.0 HP1
Novell Groupwise 8.0 HP2
Novell Groupwise 8.0 HP3
Novell Groupwise 8.0 SP1
Novell Groupwise 8.0 SP2
Novell GroupWise Internet Agent 8.0

References

BugTraq: 49779
BugTraq: 49779
CVE: CVE-2011-0334

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Novell GroupWise Internet Agent HTTP Interface Stack Buffer Overflow

Extended Description

Affected Products

References