FKIE_CVE-2014-0610

Vulnerability from fkie_nvd - Published: 2014-09-05 01:55 - Updated: 2025-04-12 10:46
Severity ?
Summary
The client in Novell GroupWise before 8.0.3 HP4, 2012 before SP3, and 2014 before SP1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference) via unspecified vectors.
References
cve@mitre.orghttp://www.novell.com/support/kb/doc.php?id=7015565Vendor Advisory
cve@mitre.orghttp://www.securitytracker.com/id/1030802
cve@mitre.orghttps://bugzilla.novell.com/show_bug.cgi?id=874533
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/95738
af854a3a-2127-422b-91ae-364da2661108http://www.novell.com/support/kb/doc.php?id=7015565Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1030802
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.novell.com/show_bug.cgi?id=874533
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/95738
Impacted products
Vendor Product Version
novell groupwise *
novell groupwise 8.0
novell groupwise 8.00
novell groupwise 8.00
novell groupwise 8.00
novell groupwise 8.01
novell groupwise 8.01
novell groupwise 8.02
novell groupwise 8.02
novell groupwise 8.02
novell groupwise 8.02
novell groupwise 8.03
novell groupwise 8.03
novell groupwise 8.03
novell groupwise 2012
novell groupwise 2012
novell groupwise 2012
novell groupwise 2014
microsoft windows *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:novell:groupwise:*:hp3:*:*:*:*:*:*",
              "matchCriteriaId": "CD0C1DD9-5CA2-47C3-8A48-B3A016BCA0E7",
              "versionEndIncluding": "8.03",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C52E2ABC-20AE-437A-83B0-2E0753787FB5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.00:hp1:*:*:*:*:*:*",
              "matchCriteriaId": "4554A278-4BB9-4F1D-A92B-FCBCF658DA4D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.00:hp2:*:*:*:*:*:*",
              "matchCriteriaId": "D45BA533-D0CE-4739-ADD4-E657FF91BD94",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.00:hp3:*:*:*:*:*:*",
              "matchCriteriaId": "05E34CD7-0B83-4C9E-95B3-C656B8AF79CB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.01:*:*:*:*:*:*:*",
              "matchCriteriaId": "892B744B-D807-41CC-9852-3606A0B1A676",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.01:hp:*:*:*:*:*:*",
              "matchCriteriaId": "42FB568C-5BC1-4A47-A10D-B032E15A9A0C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.02:*:*:*:*:*:*:*",
              "matchCriteriaId": "3414CA73-0BEA-4FC4-8E14-CF2C30FC10E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.02:hp1:*:*:*:*:*:*",
              "matchCriteriaId": "30A35C50-53F0-4A0C-AEF5-93E89B50F25C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.02:hp2:*:*:*:*:*:*",
              "matchCriteriaId": "DDD788A1-C7C2-4146-B04B-A455F113D32C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.02:hp3:*:*:*:*:*:*",
              "matchCriteriaId": "E1E087E9-CE0A-464B-ADD3-0634961B0CCC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.03:*:*:*:*:*:*:*",
              "matchCriteriaId": "38F289E2-A937-4891-AE7B-D4F7867D6D65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.03:hp1:*:*:*:*:*:*",
              "matchCriteriaId": "4C387C08-130F-415F-8B19-437BBF126027",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:8.03:hp2:*:*:*:*:*:*",
              "matchCriteriaId": "F265B4CA-EF44-41F6-BD7A-5A28913FB0CA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:2012:*:*:*:*:*:*:*",
              "matchCriteriaId": "A002FE85-5FE4-4C03-A212-40263C5A2198",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:2012:sp1:*:*:*:*:*:*",
              "matchCriteriaId": "1D0EEEFB-A718-4A09-B9F7-1196025584B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:2012:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "0799E2C4-AA2D-478F-ADCF-9D86A09F8137",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:groupwise:2014:*:*:*:*:*:*:*",
              "matchCriteriaId": "F05ED56F-FB17-4844-B7C8-FFBDBB144DE1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The client in Novell GroupWise before 8.0.3 HP4, 2012 before SP3, and 2014 before SP1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference) via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "El cliente en Novell GroupWise anterior a 8.0.3 HP4, 2012 anterior a SP3, y 2014 anterior a SP1 en Windows permite a atacantes remotos ejecutar c\u00f3digo arbitrario o causar una denegaci\u00f3n de servicio (referencia a puntero inv\u00e1lido) a trav\u00e9s de vectores no especificados."
    }
  ],
  "evaluatorComment": "\u003ca href=\"http://cwe.mitre.org/data/definitions/476.html\"\u003eCWE-476: NULL Pointer Dereference\u003c/a\u003e",
  "id": "CVE-2014-0610",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2014-09-05T01:55:10.813",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/kb/doc.php?id=7015565"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id/1030802"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.novell.com/show_bug.cgi?id=874533"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95738"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/kb/doc.php?id=7015565"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1030802"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.novell.com/show_bug.cgi?id=874533"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95738"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.