GroupWise Internet Agent < 8.0.2 HP1 Multiple Flaws

Critical Nessus Plugin ID 50692


The remote Windows host has an application that is affected by multiple vulnerabilities.


The version of GroupWise Internet Agent installed on the remote host is older than and hence affected by the following issues :

- Multiple 'Content-Type' header parsing issues can result in arbitrary code execution on the remote system.
(ZDI-10-237 / ZDI-10-238 / ZDI-10-241)

- Multiple issues while parsing 'VCALENDAR' data within an email message can allow arbitrary code execution on the remote system. (ZDI-10-239 / ZDI-10-243 / ZDI-11-025)

- The IMAP component fails to correctly handle 'IMAP LIST' command and can allow an attacker to execute arbitrary code on the remote system. (ZDI-10-242)

- Insufficient validation of HTTP headers could allow arbitrary code execution on the remote system.


Apply 8.0.2 Hot Patch 1 or later.

See Also

Plugin Details

Severity: Critical

ID: 50692

File Name: groupwise_ia_802_hp1.nasl

Version: $Revision: 1.11 $

Type: local

Agent: windows

Family: Windows

Published: 2010/11/23

Modified: 2017/11/22

Dependencies: 38971, 13855, 10456

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: SMB/GWIA/Version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2010/11/04

Vulnerability Publication Date: 2010/11/04

Exploitable With

Elliot (Novell GroupWise 8 WebAccess File Disclosure)

Reference Information

CVE: CVE-2010-4326, CVE-2010-4711, CVE-2010-4712, CVE-2010-4713, CVE-2010-4714, CVE-2010-4717

BID: 44732, 45994

OSVDB: 69139, 69142, 69140, 69141, 69143

Secunia: 40820