Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

Remote Untrusted Pointer dereference vulnerabilities in Novell GroupWise Client for Windows

 

Systems Affected


• GroupWise Client for Windows 8.0x up to and including 8.0.3 HP3
• GroupWise Client for Windows 2012 up to and including 2012.0 SP2
• GroupWise Client for Windows 2014 (initial release)

Threat Level


High


Overview


Remote code execution vulnerability has been reported in Novel GroupWise client for windows which could allow an unauthorized remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference) conditions on the affected system.


Description


The Novell GroupWise Client for Windows is vulnerable to multiple untrusted pointer dereference vulnerabilities. Remote attackers could exploit this vulnerability by using multiple untrusted pointer dereferences.

Successful exploitation of this vulnerability could allow unauthenticated remote attackers to execute arbitrary code or cause a denial of service condition on the affected system.


Impact



Solution/ Workarounds


Apply appropriate patches as mentioned in the vendors advisory
https://www.novell.com/support/kb/doc.php?id=7015565


References


http://www.cert-in.org.in/


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.