Vulnerabilities > Novell > Groupwise Messenger > 2.0.3

DATE CVE VULNERABILITY TITLE RISK
2011-12-08 CVE-2011-3179 Information Exposure vulnerability in Novell Groupwise Messenger and Messenger
The server process in Novell Messenger 2.1 and 2.2.x before 2.2.1, and Novell GroupWise Messenger 2.04 and earlier, allows remote attackers to read from arbitrary memory locations via a crafted command.
network
low complexity
novell CWE-200
5.0
5.0
2008-06-13 CVE-2008-2704 Improper Input Validation vulnerability in Novell Groupwise Messenger
Novell GroupWise Messenger (GWIM) before 2.0.3 Hot Patch 1 allows remote attackers to cause a denial of service (crash) via a long user ID, possibly involving a popup alert.
network
low complexity
novell CWE-20
5.0
5.0
2008-06-13 CVE-2008-2703 Buffer Errors vulnerability in Novell Groupwise Messenger 2.0/2.0.2/2.0.3
Multiple stack-based buffer overflows in Novell GroupWise Messenger (GWIM) Client before 2.0.3 HP1 for Windows allow remote attackers to execute arbitrary code via "spoofed server responses" that contain a long string after the NM_A_SZ_TRANSACTION_ID field name.
network
low complexity
novell CWE-119
critical
 10.0
10