Novell.GroupWise.Messenger.HTTP.POST.Val.DoS
Description
This indicates an attack attempt against a denial-of-service vulnerability in Novell GroupWise Messenger.
The vulnerability is due to an error in the processing of the val parameter. A remote attacker may exploit this by sending an HTTP POST request with a modified val parameter to TCP port 8300, causing the application to crash. This results in a denial-of-service condition.
Affected Products
Novell GroupWise Messenger 2.0
Novell GroupWise Messenger 1.0
Impact
Denial of service
Recommended Actions
Novell GroupWise Messenger 1.0
* Novell gwim106hp1.exe
http://support.novell.com/servlet/filedownload/sec/ftf/gwim106hp1.exe/
Novell GroupWise Messenger 2.0
* Novell gwim202hp1.exe
http://support.novell.com/servlet/filedownload/sec/ftf/gwim202hp1.exe/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |