GroupWise Internet Agent < 8.0.2 HP2 Email Message VCALENDAR Data TZID Variable Remote Overflow
Critical Nessus Plugin ID 51815
The remote Windows host has an application that is affected by a buffer overflow vulnerability.
The version of GroupWise Internet Agent installed on the remote host is older than 18.104.22.16877 and hence reportedly affected by an buffer overflow vulnerability. The installed version fails to correctly parse 'VCALENDAR' data within an email message containing a specially crafted 'TZID' variable value. Successful exploitation of this issue could result in arbitrary code execution on the remote system with SYSTEM privileges. (ZDI-11-027)
Update GWIA to version 8.0.2 Hot Patch 2 or later.