Check Point Advisories

Novell GroupWise Client IMG Tag SRC Parameter Buffer Overflow (CVE-2007-6435)

Vulnerability
Protection

Check Point Reference:	CPAI-2011-265
Date Published:	16 May 2011
Severity:	High
Last Updated:	Tuesday 16 November, 2021
Source:
Industry Reference:	CVE-2007-6435
Protection Provided by:	Security Gateway R81, R80, R77, R75
Who is Vulnerable?
Vulnerability Description	Novell GroupWise is a client-server collaborative software and email system provided by Novell. The Novell GroupWise Client application is capable of communicating with Novell Group server, as well as Internet email gateways using SMTP, POP, and IMAP protocols. A buffer overflow vulnerability has been reported in Novell GroupWise Client. The vulnerability is due to a boundary error in Novell GroupWise Client when processing crafted emails, containing malicious HTML IMG tags. A remote attacker could exploit this issue by sending malicious emails to the target user. Successful exploitation of this vulnerability would allow arbitrary code injection and execution, and may cause the vulnerable Novell GroupWise Client application to terminate.

Protection Overview

This protection will detect and block malicious emails sent to the target user.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R81 / R80 / R77 / R75

In the IPS tab, click Protections and find the Novell GroupWise Client IMG Tag SRC Parameter Buffer Overflow protection using the Search tool and Edit the protection's settings.
Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name: NNTP Protection Violation.
Attack Information: Novell GroupWise Client IMG Tag SRC Parameter Buffer Overflow