Vulnerabilities > CVE-2003-0122 - Denial Of Service vulnerability in IBM Lotus Domino and Lotus Notes Client
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.
Vulnerable Configurations
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0125.html
- http://marc.info/?l=bugtraq&m=104757319829443&w=2
- http://www.cert.org/advisories/CA-2003-11.html
- http://www.ciac.org/ciac/bulletins/n-065.shtml
- http://www.kb.cert.org/vuls/id/433489
- http://www.rapid7.com/advisories/R7-0010.html
- http://www.securityfocus.com/bid/7037
- http://www-1.ibm.com/support/docview.wss?rs=482&q=Domino&uid=swg21105101
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11526