IBM Lotus Domino < 7.0.2 FP3 Unspecified DoS

2008-01-11T00:00:00
ID DOMINO_7_0_2FP3.NASL
Type nessus
Reporter Tenable
Modified 2018-07-10T00:00:00

Description

The version of Lotus Domino on the remote host appears to be older than 7.0.2 FP3. According to IBM, such versions are potentially affected by an unspecified denial of service issue (SPR #WRAY6WHTCC).

                                        
                                            #
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(29925);
  script_version("1.13");
  script_cvs_date("Date: 2018/07/10 14:27:32");

  script_cve_id("CVE-2008-0243");
  script_bugtraq_id(27215);

  script_name(english:"IBM Lotus Domino < 7.0.2 FP3 Unspecified DoS");
  script_summary(english:"Checks version of Lotus Domino");

  script_set_attribute(attribute:"synopsis", value:
"The remote host has an application that is affected by a denial of
service vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Lotus Domino on the remote host appears to be older
than 7.0.2 FP3.  According to IBM, such versions are potentially
affected by an unspecified denial of service issue (SPR #WRAY6WHTCC).");
  script_set_attribute(attribute:"see_also", value:"http://www-1.ibm.com/support/docview.wss?uid=swg27011539");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Lotus Domino 7.0.2 FP3 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/01/11");
  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:lotus_domino");
  script_end_attributes();
 
  script_category(ACT_GATHER_INFO);
  script_family(english:"Denial of Service");
  script_copyright(english:"This script is Copyright (C) 2008-2018 Tenable Network Security, Inc.");
  script_dependencies("domino_installed.nasl");
  script_require_keys("Domino/Version");

  exit(0);
}


include("global_settings.inc");


# There's a problem if the version is < 7.0.2 FP3.
ver = get_kb_item("Domino/Version");
if (
  ver && 
  egrep(pattern:"^7\.0\.([01]($|[^0-9])|2($| FP[12]$))", string:ver)
)
{
  if (report_verbosity > 0)
  {
    report = string(
      "\n",
      "According to its banner, the remote version of Domino is :\n",
      "\n",
      "  ", ver, "\n"
    );
    security_hole(port:0, extra:report);
  }
  else security_hole(0);
}