What is the severity of CVE-2010-4325?

CVE-2010-4325 has a high severity rating due to the potential for remote code execution.

How do I fix CVE-2010-4325?

To fix CVE-2010-4325, update to Novell GroupWise version 8.02HP2 or later.

Which versions of GroupWise are affected by CVE-2010-4325?

CVE-2010-4325 affects Novell GroupWise versions 4.1 to 8.0.2, including various specific service packs.

What are the consequences of exploiting CVE-2010-4325?

Exploiting CVE-2010-4325 can lead to arbitrary code execution on the affected system.

Is there a workaround for CVE-2010-4325 while waiting for a patch?

A recommended workaround is to restrict access to the GroupWise Internet Agent until the software is updated.

Vulnerability/
CVE-2010-4325

critical

CWE

119

28/1/2011

7/8/2024

CVE-2010-4325: Buffer Overflow

First published: Fri Jan 28 2011(Updated: )

Buffer overflow in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP2 allows remote attackers to execute arbitrary code via a crafted TZID variable in a VCALENDAR message.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Novell GroupWise	=7.0.4
Novell GroupWise	=6.5-sp5
Novell GroupWise	=6.0
Novell GroupWise	=7.0
Novell GroupWise	=7.0.1
Novell GroupWise	=5.5
Novell GroupWise	=7.0.2
Novell GroupWise	=6.5.6
Novell GroupWise	=6.5.3
Novell GroupWise	=8.0.1
Novell GroupWise	=8.0
Novell GroupWise	=6.5-sp1
Novell GroupWise	=5.2
Novell GroupWise	=6.5.4
Novell GroupWise	=6.0-sp1
Novell GroupWise	=6.5-sp6
Novell GroupWise	=6.5-sp4
Novell GroupWise	=6.0-sp5
Novell GroupWise	=4.1
Novell GroupWise	=5.1
Novell GroupWise	=6.5-sp3
Novell GroupWise	<=8.0.2
Novell GroupWise	=6.0.1-sp1
Novell GroupWise	=7.0.3
Novell GroupWise	=5.5
Novell GroupWise	=6.5
Novell GroupWise	=5.0
Novell GroupWise	=4.1a
Novell GroupWise	=6.5.2
Novell GroupWise	=6.5-sp2
Novell GroupWise	=5.57e
Novell GroupWise	=6.5.7

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-4325?
CVE-2010-4325 has a high severity rating due to the potential for remote code execution.
How do I fix CVE-2010-4325?
To fix CVE-2010-4325, update to Novell GroupWise version 8.02HP2 or later.
Which versions of GroupWise are affected by CVE-2010-4325?
CVE-2010-4325 affects Novell GroupWise versions 4.1 to 8.0.2, including various specific service packs.
What are the consequences of exploiting CVE-2010-4325?
Exploiting CVE-2010-4325 can lead to arbitrary code execution on the affected system.
Is there a workaround for CVE-2010-4325 while waiting for a patch?
A recommended workaround is to restrict access to the GroupWise Internet Agent until the software is updated.

collector/nvd-historical
collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/last-modified-date
agent/severity
agent/description
agent/first-publish-date
agent/tags
agent/event
agent/source
vendor/novell
canonical/novell groupwise
version/novell groupwise/7.0.4
version/novell groupwise/6.5-sp5
version/novell groupwise/6.0
version/novell groupwise/7.0
version/novell groupwise/7.0.1
version/novell groupwise/5.5
version/novell groupwise/7.0.2
version/novell groupwise/6.5.6
version/novell groupwise/6.5.3
version/novell groupwise/8.0.1
version/novell groupwise/8.0
version/novell groupwise/6.5-sp1
version/novell groupwise/5.2
version/novell groupwise/6.5.4
version/novell groupwise/6.0-sp1
version/novell groupwise/6.5-sp6
version/novell groupwise/6.5-sp4
version/novell groupwise/6.0-sp5
version/novell groupwise/4.1
version/novell groupwise/5.1
version/novell groupwise/6.5-sp3
version/novell groupwise/8.0.2
version/novell groupwise/6.0.1-sp1
version/novell groupwise/7.0.3
version/novell groupwise/6.5
version/novell groupwise/5.0
version/novell groupwise/4.1a
version/novell groupwise/6.5.2
version/novell groupwise/6.5-sp2
version/novell groupwise/5.57e
version/novell groupwise/6.5.7