Novell : Security Vulnerabilities, CVEs, Published In October 2011 (Code Execution)
Array index error in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a crafted yearly RRULE variable in a VCALENDAR attachment in an e-mail message.
Max CVSS
10.0
EPSS Score
68.34%
Published
2011-10-08
Updated
2018-10-09
Integer signedness error in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a negative BYWEEKNO property in a weekly RRULE variable in a VCALENDAR attachment in an e-mail message.
Max CVSS
10.0
EPSS Score
43.38%
Published
2011-10-08
Updated
2012-05-14
Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management (ZHM) 7 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-2655.
Max CVSS
9.3
EPSS Score
2.50%
Published
2011-10-24
Updated
2017-08-29
Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management (ZHM) 7 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-2656.
Max CVSS
9.3
EPSS Score
2.50%
Published
2011-10-24
Updated
2017-08-29
Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a long HTTP request for a .css file.
Max CVSS
10.0
EPSS Score
38.84%
Published
2011-10-08
Updated
2012-05-14
Heap-based buffer overflow in the NgwiCalVTimeZoneBody::ParseSelf function in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a crafted TZNAME variable in a VCALENDAR attachment in an e-mail message, related to an "integer truncation error."
Max CVSS
10.0
EPSS Score
9.09%
Published
2011-10-08
Updated
2012-05-14
6 vulnerabilities found