Denial of Service in Novell GroupWise Messenger Affected by Long User ID
CVE-2008-2704

Currently unrated

Key Information:

Vendor: Novell
Status: Groupwise Messenger
Vendor: CVE Published:; 13 June 2008

What is CVE-2008-2704?

A vulnerability in Novell GroupWise Messenger allows remote attackers to trigger a denial of service condition. By sending a specially crafted long user ID, an attacker may cause the application to crash, disrupting service for legitimate users. The issue may involve a popup alert, but it remains uncertain whether this vulnerability can be exploited across different privilege boundaries.

References

http://www.securityfocus.com/bid/29602

vdb-entryx_refsource_BID

http://secunia.com/advisories/30576

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1020209

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 13, 2008
Vulnerability Reserved
Jun 13, 2008