Intrusion Prevention

Novell.GroupWise.WebAccess.Base64.Decoding.Buffer.Overflow

Description

This indicates an attack attempt against a stack-based buffer-overflow vulnerability in Novell GroupWise (GW) WebAccess.
The vulnerability is caused by an error when the vulnerable software handles long base64 data. It allows a remote attacker to execute arbitrary code via long base64 data in an HTTP Basic Authentication request.

Affected Products

Novell GroupWise (GW) WebAccess 7.0 SP2 and prior.

Impact

System compromise.

Recommended Actions

Apply the patch, available from the vendor's web site:
http://download.novell.com/Download?buildid=8RF83go0nZg~
http://download.novell.com/Download?buildid=O9ucpbS1bK0~

CVE References

CVE-2007-2171