Preemptive Protection against Novell GroupWise Internet Agent Buffer Overflow

(CVE-2009-0410)
Novell GroupWise is an email, calendaring and collaborative application available from Novell. A buffer overflow vulnerability has been reported in Novell GroupWise, specifically in its Mail Transfer Agent. A remote unauthenticated attacker could exploit the vulnerability by sending an overly long RCPT TO command to the affected application. Successful exploitation may allow for code execution with SMTP process privileges, or may terminate the service and lead to a Denial of Service condition. SmartDefense Services have provided preemptive protection against this vulnerability since January 2005, when protections were made available to detect and block SMTP commands longer than a configurable threshold.

For more information, see CPAI-2009-041.