Описание
A vulnerability in the MIME message handling of the Domino server (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the server or inject code into the system which would execute with the privileges of the server.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.0.0 (включая) до 10.0.1 (исключая)
Одно из
cpe:2.3:a:hcltech:domino:*:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_1:*:*:*:*:*:*
cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_2:*:*:*:*:*:*
cpe:2.3:a:hcltech:domino:10.0.1:fix_pack_3:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01673
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
A vulnerability in the MIME message handling of the Domino server (versions 9 and 10) could potentially be exploited by an unauthenticated attacker resulting in a stack buffer overflow. This could allow a remote attacker to crash the server or inject code into the system which would execute with the privileges of the server.
EPSS
Процентиль: 82%
0.01673
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-787