Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2003-2022 Tenable Network Security, Inc.DOMINO5_OVERFLOWS.NASL
HistoryMar 10, 2003 - 12:00 a.m.

IBM Lotus Domino < 5.0.12 / 6.0.1 Multiple Vulnerabilities

2003-03-1000:00:00
This script is Copyright (C) 2003-2022 Tenable Network Security, Inc.
www.tenable.com
12
JSON

The remote Lotus Domino server, according to its version number, is affected by various buffer overflows affecting it when it acts as a client (through webretriever) or in LDAP.

An attacker may use these to disable this server or execute arbitrary commands on the remote host.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(11338);
  script_version("1.25");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id("CVE-2001-1311", "CVE-2003-0123");
  script_bugtraq_id(3041, 7038, 7039);

  script_name(english:"IBM Lotus Domino < 5.0.12 / 6.0.1 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"Arbitray code may be run on the remote host.");
  script_set_attribute(attribute:"description", value:
"The remote Lotus Domino server, according to its version number, is
affected by various buffer overflows affecting it when it acts as a
client (through webretriever) or in LDAP. 

An attacker may use these to disable this server or execute arbitrary
commands on the remote host.");
  script_set_attribute(attribute:"see_also", value:"http://www.rapid7.com/advisories/R7-0011.html");
  script_set_attribute(attribute:"see_also", value:"http://www.rapid7.com/advisories/R7-0012.html");
  script_set_attribute(attribute:"solution", value:
"Update to Domino 5.0.12 / 6.0.1 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2001/07/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2003/03/10");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:lotus_domino");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Gain a shell remotely");

  script_copyright(english:"This script is Copyright (C) 2003-2022 Tenable Network Security, Inc.");

  script_dependencies("http_version.nasl", "webmirror.nasl", "www_fingerprinting_hmap.nasl");
  script_require_ports("Services/www", 80);

  exit(0);
}

#
# The script code starts here
#
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");


port = get_http_port(default:80);

banner = get_http_banner(port: port, exit_on_fail: 1);
if ("Lotus Domino" >!< banner ) exit(0);

if(egrep(pattern:"^Server: Lotus-Domino/(Release-)?(4\..*|5\.0.?([0-9]|1[0-1])[^0-9])", string:banner))security_hole(port);
VendorProductVersionCPE
ibmlotus_dominocpe:/a:ibm:lotus_domino

Related

securityvulns 2
cve 2
cert 1
securityvulns
securityvulns
R7-0011: Lotus Notes/Domino Web Retriever HTTP Status Buffer Overflow
2003-03-13 00:00:00
R7-0012: Lotus Notes/Domino R6-beta PROTOS LDAP Denial of Service Regression
2003-03-13 00:00:00
cve
cve
CVE-2003-0123
2003-03-18 05:00:00
CVE-2001-1311
2001-07-16 04:00:00
cert
cert
Lotus Domino R5 Server Family contains multiple vulnerabilities in LDAP handling code
2001-07-17 00:00:00
JSON
Related for DOMINO5_OVERFLOWS.NASL
securityvulns2cve2cert1