EIP-2026-115963

PRE-CVE

Novell Groupwise Internet Agent - LDAP BIND Request Overflow

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115963. PoCs published by Francis Provencher.

AI-analyzed exploit summary This Python script exploits a buffer overflow vulnerability in Novell GroupWise Internet Agent (gwia.exe) by sending an overly long BIND Request via LDAP. The exploit targets versions 8.0.2 HP3 and 2012, potentially allowing arbitrary code execution.

Description

Novell Groupwise Internet Agent - LDAP BIND Request Overflow

Exploits (1)

exploitdb WORKING POC VERIFIED

by Francis Provencher · textdoswindows

https://www.exploit-db.com/exploits/22707

View Code ZIP pw:eip

This Python script exploits a buffer overflow vulnerability in Novell GroupWise Internet Agent (gwia.exe) by sending an overly long BIND Request via LDAP. The exploit targets versions 8.0.2 HP3 and 2012, potentially allowing arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Novell GroupWise 8.0.2 HP3 and 2012

No auth needed

Prerequisites: Network access to the target LDAP service

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026