Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:NOVELL:MESSENGER-LOGIN |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Novell GroupWise Messenger nmma.exe Login Memory Corruption |
Release Date |
2013/01/08 |
Update Number |
2223 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: Novell GroupWise Messenger nmma.exe Login Memory Corruption
This signature detects attempts to exploit a known vulnerability against Novell GroupWise Messenger. A successful attack can lead to memory corruption and arbitrary code execution.
Extended Description
Novell GroupWise Messenger is prone to a heap-memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Novell GroupWise Messenger versions 2.1.0 and prior are vulnerable.
Affected Products
- Novell groupwise_messenger 1.0.6
- Novell groupwise_messenger 2.0
- Novell groupwise_messenger 2.0.2
- Novell groupwise_messenger 2.0.3
- Novell groupwise_messenger 2.0.3 HP1
- Novell groupwise_messenger 2.1.0
References
- BugTraq: 52056