CVE-2011-3179

The server process in Novell Messenger 2.1 and 2.2.x before 2.2.1, and Novell GroupWise Messenger 2.04 and earlier, allows remote attackers to read from arbitrary memory locations via a crafted command.

Published: Dec 8, 2011
Updated: Apr 13, 2023
CVE: CVE-2011-3179
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
novell / groupwise_messenger	2.0.2	2.0.2.x
novell / messenger	2.2.0	2.2.0.x
novell / groupwise_messenger	1.0.6	1.0.6.x
novell / messenger	2.1	2.1.x
novell / groupwise_messenger	2.0.3	2.0.3.x
novell / groupwise_messenger	-	2.0.4.x
novell / groupwise_messenger	2.0	2.0.x
novell / groupwise_messenger	2.0.1	2.0.1.x

http://www.novell.com/support/viewContent.do?externalId=7009634
https://bugzilla.novell.com/show_bug.cgi?id=712158

Vulnerability Database

CVE-2011-3179