EIP-2026-115964

PRE-CVE

Novell Groupwise Messenger 2.1.0 - Arbitrary Memory Corruption

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-115964. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This advisory details a memory corruption vulnerability in Novell GroupWise Messenger's nmma.exe service, allowing an authenticated attacker to write a NULL value to an arbitrary memory location via a crafted 'createsearch' command with a type 9 value. The analysis includes disassembly snippets and exploitation context but lacks direct exploit code.

Description

Novell Groupwise Messenger 2.1.0 - Arbitrary Memory Corruption

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textdoswindows

https://www.exploit-db.com/exploits/18488

View Code ZIP pw:eip

This advisory details a memory corruption vulnerability in Novell GroupWise Messenger's nmma.exe service, allowing an authenticated attacker to write a NULL value to an arbitrary memory location via a crafted 'createsearch' command with a type 9 value. The analysis includes disassembly snippets and exploitation context but lacks direct exploit code.

Classification

Writeup 90%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: Novell GroupWise Messenger <= 2.1.0

Auth required

Prerequisites: Valid account credentials · Network access to port 8300

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026