SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  Application (Generic)  >  Groove Virtual Office Vendors:  Groove Networks
Groove Virtual Office Lets Remote Users Execute Arbitrary Code and Discloses Information to Local Users
SecurityTracker Alert ID:  1014019
SecurityTracker URL:  http://securitytracker.com/id?1014019
CVE Reference:  GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  May 20 2005
Impact:  Denial of service via network, Disclosure of authentication information, Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via network
Fix Available:  Yes   Vendor Confirmed:  Yes  
Version(s): prior to 3.1.1.2364
Description:  Several vulnerabilities were reported in Groove Virtual Office. A remote user may be able to execute arbitrary code.

A remote user can create a specially crafted embedded or attached filename that will cause Groove Virtual Office to display the incorrect file extension. If the target user opens the file, arbitrary code may be executed.

A remote user may be able to bypass access restrictions on Microsoft Component Object Model (COM) objects to cause a COM object to execute arbitrary code. The specific impact depends on the capabilities of the target COM object, but may include information disclosure, arbitrary scripting code execution, or denial of service.

The software uses insecure default permissions for installation files and directories. A local user may be able to access potentially sensitive data, such as user data and authentication information. By default, the installation directories are accessible by members of the EVERYONE group.

US-CERT and the vendor reported this vulnerability.
Impact:  A remote user may be able to execute arbitrary code, obtain information, or deny service.

A local user may be able to obtain potentially sensitive information.
Solution:  The vendor has released a fixed version (3.1A Build 2364), available at:

http://www.groove.net/index.cfm/pagename/UpdateGroove
Vendor URL:  www.groove.net/ (Links to External Site)
Cause:  Access control error, State error
Underlying OS:  Windows (Any)

Message History:   None.

 Source Message Contents
Date:  Fri, 20 May 2005 02:08:17 -0400
Subject:  http://www.groove.net/index.cfm?pagename=Support_Overview

 
 
 
> Important Security Update
> Analysis has identified security vulnerability in the Groove Virtual Office client 
> software that warranted immediate attention to correct. While we aren't aware of any 
> incidents that have affected our users, we have responded immediately by eliminating 
> the vulnerability. We encourage all of our users to update to the latest releases of 
> Groove Virtual Office.


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2005, SecurityGlobal.net LLC