Novell GroupWise Messenger is "a corporate instant messaging product that uses Novell eDirectory as its user database". A vulnerability exists in the Novell GroupWise Messenger Client (GWIM) for Windows that could allow an attacker to execute arbitrary code on a compromised workstation. The vulnerability takes the form of a remote buffer overflow in the client, caused by spoofed server responses to valid client requests. All versions of the Windows client, prior to the patch for this issue, are vulnerable.

http://www.securiteam.com/windowsntf...CP042KOUW.html