CVE-2012-0417

critical

Published 2012-09-28 · Modified 2026-04-29

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

Integer overflow in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before Support Pack 3 and 2012 before Support Pack 1 allows remote attackers to execute arbitrary code via unspecified vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://www.novell.com/support/kb/doc.php?id=7010770

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://download.novell.com/Download?buildid=O5hTjIiMdMo~

Application impact

Vendor	Product	Versions
novell	groupwise	`8.0`
novell	groupwise	`8.00`
novell	groupwise	`8.01`
novell	groupwise	`8.02`
novell	groupwise	`2012`

References

http://download.novell.com/Download?buildid=O5hTjIiMdMo~
http://www.novell.com/support/kb/doc.php?id=7010770
http://www.securitytracker.com/id?1027599
https://bugzilla.novell.com/show_bug.cgi?id=740041
http://download.novell.com/Download?buildid=O5hTjIiMdMo~
http://www.novell.com/support/kb/doc.php?id=7010770
http://www.securitytracker.com/id?1027599
https://bugzilla.novell.com/show_bug.cgi?id=740041

CWEs

CWE-189

Verify integrity in audit chain (admin only). AS-IS.