icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Groove < 3.1.0 Build 2338 Multiple Vulnerabilities

High

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running Groove, a virtual office workspace that allows remote users to collaborate via the Internet. Groove uses centralized servers to keep remote workers synchronized with each other. This version of Groove is vulnerable to multiple remote attacks. The attacks stem from a lack of content parsing by the Groove product. An attacker exploiting these flaws would need to be able to entice a Groove user into opening or viewing malicious files or data from within the Groove application. Successful exploitation leads to the attacker being able to execute arbitrary code on the unsuspecting user.

Solution

Upgrade to version 3.1.0 build 2338 or higher.