Integer Signedness Error in Novell GroupWise Internet Agent
CVE-2011-2662

Currently unrated

Key Information:

Vendor

Novell
Status
Groupwise
Vendor
CVE Published:
8 October 2011

What is CVE-2011-2662?

The vulnerability arises from an integer signedness error in the GroupWise Internet Agent (GWIA) of Novell GroupWise 8.0 prior to HP3. This flaw enables remote attackers to exploit a negative BYWEEKNO property within a weekly RRULE variable in a VCALENDAR attachment of an email. By crafting a malicious email with the specified properties, an attacker can potentially execute arbitrary code on the affected system, compromising its integrity and confidentiality.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://bugzilla.novell.com/show_bug.cgi?id=707527
x_refsource_CONFIRM
http://www.novell.com/support/viewContent.do?externalId=7...
x_refsource_CONFIRM
https://labs.idefense.com/verisign/intelligence/2009/vuln...
third-party-advisoryx_refsource_IDEFENSE

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.