CVE-2005-2804

Novell GroupWise 6.5.3 - Denial of Service via Large TCP/IP Port in Registry Key

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-2804. PoCs published by Francisco Amato.

AI-analyzed exploit summary This is a writeup describing a local integer overflow vulnerability in Novell GroupWise Client 6.5.3. The issue can be triggered by providing a specific long integer value, potentially leading to memory corruption, crashes, or arbitrary code execution.

Description

Integer overflow in the registry parsing code in GroupWise 6.5.3, and possibly earlier version, allows remote attackers to cause a denial of service (application crash) via a large TCP/IP port in the Windows registry key.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Francisco Amato · textdoswindows

https://www.exploit-db.com/exploits/26301

View Code ZIP pw:eip

This is a writeup describing a local integer overflow vulnerability in Novell GroupWise Client 6.5.3. The issue can be triggered by providing a specific long integer value, potentially leading to memory corruption, crashes, or arbitrary code execution.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Novell GroupWise Client 6.5.3

No auth needed

Prerequisites: Local access to the target system · Ability to input the malicious value into the GroupWise Client

MITRE ATT&CK