Denial of Service Vulnerability in Novell GroupWise Messenger Agent
CVE-2006-4511

Currently unrated

Key Information:

Vendor

Novell
Status
Groupwise Messenger
Vendor
CVE Published:
5 October 2006

What is CVE-2006-4511?

The Novell GroupWise Messenger Agent, specifically versions 2.0.2 and 1.0.6, is susceptible to a denial of service attack that can be triggered through a specially crafted HTTP POST request directed at TCP port 8300. This request contains a manipulated 'val' parameter that leads to a null dereference, resulting in a crash of the nmma.exe process. Attackers can exploit this vulnerability to disrupt service availability by causing a crash of the messaging agent, impacting user communications and operations.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.vupen.com/english/advisories/2006/3893
vdb-entryx_refsource_VUPEN
http://www.idefense.com/intelligence/vulnerabilities/disp...
third-party-advisoryx_refsource_IDEFENSE
http://securitytracker.com/id?1016974
vdb-entryx_refsource_SECTRACK

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.