CVE-2011-3179

UNRATEDInfo disclosure

Description

The server process in Novell Messenger 2.1 and 2.2.x before 2.2.1, and Novell GroupWise Messenger 2.04 and earlier, allows remote attackers to read from arbitrary memory locations via a crafted command.

Affected products

Novell / groupwise_messenger2.0.4
Novell / groupwise_messenger1.0.6 – 1.0.6
Novell / groupwise_messenger2.0 – 2.0
Novell / groupwise_messenger2.0.1 – 2.0.1
Novell / groupwise_messenger2.0.2 – 2.0.2
Novell / groupwise_messenger2.0.3 – 2.0.3
Novell / messenger2.1 – 2.1
Novell / messenger2.2.0 – 2.2.0

References

MISChttp://www.novell.com/support/viewContent.do?externalId=7009634
MISChttps://bugzilla.novell.com/show_bug.cgi?id=712158