Remote Code Execution and Denial of Service in Novell GroupWise by Novell
CVE-2013-0804

Currently unrated

Key Information:

Vendor: Novell
Status: Groupwise
Vendor: CVE Published:; 24 February 2013

What is CVE-2013-0804?

A security vulnerability in Novell GroupWise 8.0 prior to version 8.0.3 HP2 and in GroupWise 2012 before SP1 HP1 allows remote attackers to execute arbitrary code or cause a denial of service. This vulnerability occurs due to an incorrect pointer dereference, which can be exploited through unspecified vectors, enabling attackers to gain unauthorized access or disrupt service.

References

http://www.novell.com/support/kb/doc.php?id=7011687

x_refsource_CONFIRM

https://www.htbridge.com/advisory/HTB23131

x_refsource_MISC

https://bugzilla.novell.com/show_bug.cgi?id=792535

x_refsource_CONFIRM

EPSS Score

38% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 24, 2013