CVE-2009-1636: Buffer Overflow
First published: Tue May 26 2009(Updated: )
Multiple buffer overflows in the Internet Agent (aka GWIA) component in Novell GroupWise 7.x before 7.03 HP3 and 8.x before 8.0 HP2 allow remote attackers to execute arbitrary code via (1) a crafted e-mail address in an SMTP session or (2) an SMTP command.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Micro Focus GroupWise | =8.0-hp1 | |
| Micro Focus GroupWise | =7.0 | |
| Micro Focus GroupWise | =7.03-hp2 | |
| Micro Focus GroupWise | =7.0.2 | |
| Micro Focus GroupWise | =7.0-sp1 | |
| Micro Focus GroupWise | =7.0-sp3 | |
| Micro Focus GroupWise | =7.01 | |
| Micro Focus GroupWise | =7.0.0-sp1 | |
| Micro Focus GroupWise | =7.0.3 | |
| Micro Focus GroupWise | =7.03-hp1a | |
| Micro Focus GroupWise | =7.0-sp2 | |
| Micro Focus GroupWise | =7.0.0-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.novell.com/show_bug.cgi?id=478892
- https://bugzilla.novell.com/show_bug.cgi?id=482914
- http://www.securityfocus.com/bid/35064
- http://secunia.com/advisories/35177
- http://www.vupen.com/exploits/Novell_GroupWise_GWIA_Email_Address_Remote_Buffer_Overflow_Exploit_1393141.php
- http://www.vupen.com/english/advisories/2009/1393
- http://www.novell.com/support/viewContent.do?externalId=7003273&sliceId=1
- http://www.securityfocus.com/bid/35065
- http://www.novell.com/support/viewContent.do?externalId=7003272&sliceId=1
- http://www.vupen.com/exploits/Novell_GroupWise_GWIA_SMTP_Command_Remote_Buffer_Overflow_PoC_Exploit_1393140.php
- http://osvdb.org/54644
- http://osvdb.org/54645
- http://www.securitytracker.com/id?1022276
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50693
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50692
- http://www.securityfocus.com/archive/1/503724/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2009-1636?
CVE-2009-1636 is classified with a high severity due to the potential for remote code execution.
How do I fix CVE-2009-1636?
To fix CVE-2009-1636, upgrade Novell GroupWise to version 7.03 HP3 or 8.0 HP2 or later.
Who is affected by CVE-2009-1636?
CVE-2009-1636 affects users of Novell GroupWise versions 7.x before 7.03 HP3 and 8.x before 8.0 HP2.
What types of attacks are possible through CVE-2009-1636?
CVE-2009-1636 allows remote attackers to execute arbitrary code via crafted e-mail addresses or SMTP commands.
Is there a workaround for CVE-2009-1636?
There are no known effective workarounds for CVE-2009-1636, thus an upgrade is recommended.
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/weakness
- agent/severity
- agent/author
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- vendor/novell
- canonical/novell groupwise
- version/novell groupwise/7.0
- version/novell groupwise/7.0-sp1
- version/novell groupwise/7.0-sp2
- version/novell groupwise/7.0-sp3
- version/novell groupwise/7.0.0-sp1
- version/novell groupwise/7.0.0-sp2
- version/novell groupwise/7.0.2
- version/novell groupwise/7.0.3
- version/novell groupwise/7.01
- version/novell groupwise/7.03-hp1a
- version/novell groupwise/7.03-hp2
- version/novell groupwise/8.0-hp1