GroupWise Internet Agent Stack Overflow Security Vulnerability

  • 7006374
  • 30-Jun-2010
  • 27-Apr-2012


Novell GroupWise 7
Novell GroupWise 8
Novell GroupWise Internet Agent


The Novell GroupWise Internet Agent is vulnerable to an exploit whereby an authenticated user could potentially cause a stack overflow, which would allow them to execute arbitrary code.

Affected versions:
GroupWise 7.0, 7.01, 7.02, 7.03x, 7.04
GroupWise 8.0, 8.01x

This vulnerability was discovered and reported by {PRL} Francis Provencher working with TippingPoint's Zero Day Initiative (

Novell bug 597331, ZDI-CAN-673, CVE-2010-2777


For GroupWise 8, update to GroupWise 8.0 Support Pack 2 (SP2) or later.
For GroupWise 7 systems, apply the GroupWise 7.0 post-SP4 Field Test File (FTF)


Security Alert

Bug Number


Feedback service temporarily unavailable. For content questions or problems, please contact Support.