Описание
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.
Ссылки
- Third Party Advisory
- Mailing ListThird Party Advisory
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryUS Government Resource
- Not Applicable
- PatchThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Mailing ListThird Party Advisory
- Broken Link
- Third Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryUS Government Resource
- Not Applicable
- PatchThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:lotus_domino:4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:4.6.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:4.6.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.4a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.6a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.7a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.8a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.9:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.9a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:5.0.11:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.9a:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.10:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:5.0.11:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_notes_client:r5:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.22971
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.
EPSS
Процентиль: 96%
0.22971
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other