Intrusion Prevention

Novell.GroupWise.Internet.Agent.RCPT.Command.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in Novell GroupWise.
The vulnerability is due to an improper boundary check condition in the application when handling a malicious SMTP command. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted SMTP command.

Affected Products

Novell Groupwise 6.5.x
Novell Groupwise 7.0
Novell Groupwise 7.01
Novell Groupwise 7.02x
Novell Groupwise 7.03
Novell Groupwise 7.03HP1a
Novell Groupwise 8.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.novell.com/support/kb/doc.php?id=7002502

CVE References

CVE-2009-0410