Groove < 3.1.0 Build 2338 Multiple Vulnerabilities
High Nessus Network Monitor Plugin ID 2923
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote host is running Groove, a virtual office workspace that allows remote users to collaborate via the Internet. Groove uses centralized servers to keep remote workers synchronized with each other. This version of Groove is vulnerable to multiple remote attacks. The attacks stem from a lack of content parsing by the Groove product. An attacker exploiting these flaws would need to be able to entice a Groove user into opening or viewing malicious files or data from within the Groove application. Successful exploitation leads to the attacker being able to execute arbitrary code on the unsuspecting user.
SolutionUpgrade to version 3.1.0 build 2338 or higher.