Vulnerabilities > CVE-2006-0120 - Multiple Unspecified vulnerability in IBM products

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

ibm

NVD

Published: 2006-01-09

Updated: 2017-07-20

Summary

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 allow attackers to cause a denial of service (application crash) via multiple vectors, involving (1) a malformed message sent to an "Out Of Office" agent (SPR LPEE6DMQWJ), (2) the compact command (RTIN5U2SAJ), (3) malformed bitmap images (MYAA6FH5HW), (4) the "Delete Attachment" action (YPHG6844LD), (5) parsing certificates from a remote Certificate Table (AELE6DZFJW), and (6) creating a SSL key ring with the Domino Administration client (NSUA4FQPTN).

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Lotus Domino 6.5.0 IBM Lotus Domino 6.5.1 IBM Lotus Domino 6.5.2 IBM Lotus Domino 6.5.3 IBM Lotus Domino 6.5.4 IBM Lotus Domino Enterprise Server 6.5.2 IBM Lotus Domino Enterprise Server 6.5.4 IBM Lotus Notes 6.5 IBM Lotus Notes 6.5.1 IBM Lotus Notes 6.5.2 IBM Lotus Notes 6.5.3 IBM Lotus Notes 6.5.4	14

Summary

Vulnerable Configurations

References