Detections
Analytics
CVE-2007-2171
critical
Description
Stack-based buffer overflow in the base64_decode function in GWINTER.exe in Novell GroupWise (GW) WebAccess before 7.0 SP2 allows remote attackers to execute arbitrary code via long base64 content in an HTTP Basic Authentication request.
References
http://www.zerodayinitiative.com/advisories/ZDI-07-015.html
http://www.vupen.com/english/advisories/2007/1455
http://www.securitytracker.com/id?1017932
http://www.securityfocus.com/bid/23556
http://www.securityfocus.com/archive/1/466212/100/0/threaded
http://securityreason.com/securityalert/2610
http://secunia.com/advisories/24944