CVE-2013-0804

critical

Published 2013-02-24 · Modified 2026-04-29

CVSS v3

—

CVSS v2

10.0

VIR risk

10.0

Description

The client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference) via unspecified vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://www.novell.com/support/kb/doc.php?id=7011687

Application impact

Vendor	Product	Versions
novell	groupwise	`8.0`
novell	groupwise	`8.00`
novell	groupwise	`8.01`
novell	groupwise	`8.02`
novell	groupwise	`8.03`
novell	groupwise	`2012`

References

http://www.novell.com/support/kb/doc.php?id=7011687
https://bugzilla.novell.com/show_bug.cgi?id=792535
https://www.htbridge.com/advisory/HTB23131
http://www.novell.com/support/kb/doc.php?id=7011687
https://bugzilla.novell.com/show_bug.cgi?id=792535
https://www.htbridge.com/advisory/HTB23131

CWEs

CWE-78

Verify integrity in audit chain (admin only). AS-IS.