CVE-2011-3827

Sažetak

The iCalendar component in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before Support Pack 3 allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted date-time string in a .ics attachment.

Reference

http://archives.neohapsis.com/archives/bugtraq/2012-09/0075.html
http://secunia.com/secunia_research/2012-30/
http://www.novell.com/support/kb/doc.php?id=7010767
http://www.securitytracker.com/id?1027540
https://bugzilla.novell.com/show_bug.cgi?id=733887

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

05-04-2013 - 03:05

Objavljeno

19-09-2012 - 10:57