CVE-2008-2703

Multiple stack-based buffer overflows in Novell GroupWise Messenger (GWIM) Client before 2.0.3 HP1 for Windows allow remote attackers to execute arbitrary code via "spoofed server responses" that contain a long string after the NM_A_SZ_TRANSACTION_ID field name.
Configurations

Configuration 1

cpe:2.3:a:novell:groupwise_messenger:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise_messenger:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:novell:groupwise_messenger:2.0:*:*:*:*:*:*:*

Information

Published : 2008-06-13 07:41

Updated : 2018-10-11 08:42


NVD link : CVE-2008-2703

Mitre link : CVE-2008-2703

Products Affected
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer