Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An ActiveX control in gwcls1.dll in the client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote attackers to execute arbitrary code via (1) a pointer argument to the SetEngine method or (2) an XPItem pointer argument to an unspecified method.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell GroupWise Client 不可信指针引用漏洞
Vulnerability Description
Novell GroupWise是美国Novell公司的一套协作通讯系统。该系统提供了电子邮件、日程安排、即时通讯、任务管理、文档管理以及联系人管理等协作通讯服务。 Novell GroupWise 8.0.3 HP2之前的8.0版本以及SP1 HP1之前的2012版本的客户端中的gwcls1.dll中的ActiveX控件中存在漏洞。通过(1)指针参数发送到SetEngine方法或者(2)XPItem指针参数发送未明方法,远程攻击者可利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A