cpe:/a:novell:groupwise:6.5 cpe:/a:novell:groupwise:7.0 cpe:/a:novell:groupwise:7.01 cpe:/a:novell:groupwise:7.02x cpe:/a:novell:groupwise:7.03 cpe:/a:novell:groupwise:7.03:hp1a cpe:/a:novell:groupwise:8.0 CVE-2009-0410 2009-02-03T14:30:00.577-05:00 2009-02-04T00:00:00.000-05:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-02-04T10:10:00.000-05:00 ALLOWS_ADMIN_ACCESS BUGTRAQ 20090202 ZDI-09-010: Novell Netware Groupwise GWIA RCPT Command Buffer Overflow Vulnerability BID 33560 SECUNIA 33744 CONFIRM http://download.novell.com/Download?buildid=GjZRRdqCFW0 CONFIRM http://www.novell.com/support/viewContent.do?externalId=7002502 MISC http://www.zerodayinitiative.com/advisories/ZDI-09-010/ Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.