CVE-2011-2662

Published: Oct 8, 2011Modified: Apr 29, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Integer signedness error in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a negative BYWEEKNO property in a weekly RRULE variable in a VCALENDAR attachment in an e-mail message.

Affected (3)

Products: Novell: Groupwise

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Novell Groupwise	Version 8.0
Novell Groupwise	Version 8.0 hp1
Novell Groupwise	Version 8.0 hp2

Related CWEs

References (6)

http://www.novell.com/support/viewContent.do?externalId=7009215

Source: cve@mitre.org

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=707527

Source: cve@mitre.org

https://labs.idefense.com/verisign/intelligence/2009/vulnerabilities/display.php?id=947

Source: cve@mitre.org

http://www.novell.com/support/viewContent.do?externalId=7009215

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugzilla.novell.com/show_bug.cgi?id=707527

Source: af854a3a-2127-422b-91ae-364da2661108

https://labs.idefense.com/verisign/intelligence/2009/vulnerabilities/display.php?id=947

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.