Lucene search

[email protected]CVE-2011-0917

HistoryFeb 08, 2011 - 10:00 p.m.

CVE-2011-0917

2011-02-0822:00:02

CWE-119

[email protected]

web.nvd.nist.gov

ibm lotus domino

nldap.exe

buffer overflow

remote code execution

ldap bind

cve-2011-0917

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.934

Percentile

99.1%

JSON

Buffer overflow in nLDAP.exe in IBM Lotus Domino allows remote attackers to execute arbitrary code via a long string in an LDAP Bind operation, aka SPR KLYH87LMVX.

Affected configurations

NVD

Node

ibmlotus_domino

VendorProductVersionCPE
ibmlotus_dominocpe:/a:ibm:lotus_domino::::

Vendor	Product	Version	CPE
ibm	lotus_domino		cpe:/a:ibm:lotus_domino::::

References

secunia.com/advisories/43224

www-01.ibm.com/support/docview.wss?uid=swg21461514

www.exploit-db.com/exploits/16190/

www.protekresearchlab.com/index.php?option=com_content&view=article&id=23&Itemid=23

zerodayinitiative.com/advisories/ZDI-11-047/

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.8

Confidence

Low

EPSS

0.934

Percentile

99.1%

JSON

Related for CVE-2011-0917

nvd1 cvelist1 checkpoint_advisories2 zdi1 openvas1 prion1 nessus1