Intrusion Prevention



This indicates an attack attempt against a Heap overflow vulnerability in Micro Focus GroupWise.
The vulnerability is caused by insufficient validation of usernames and passwords submitted to the Post Office Agent. A remote attacker can exploit this vulnerability by sending a crafted HTTP request to a targeted server and execute arbitrary code in the security context of the root user.

Affected Products

Micro Focus GroupWise 2014
Micro Focus GroupWise 2014 R2 SP1 and prior


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version.

CVE References