Buffer overflow

2007-03-2821:19:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.927 High

EPSS

Percentile

98.9%

JSON

Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to cause a denial of service via a long username.

CPENameOperatorVersion
lotus_dominoeq6.5.4 fp1
lotus_dominoeq6.5.2
lotus_dominoeq6.5.4
lotus_dominoeq6.5.1
lotus_dominoeq7.0
lotus_dominoeq6.5.0
lotus_dominoeq6.5.4 fp2
lotus_dominoeq6.5.5 fp2
lotus_dominoeq6.5.3
lotus_dominoeq7.0.2

Name	Operator	Version
lotus_domino	eq	6.5.4 fp1
lotus_domino	eq	6.5.2
lotus_domino	eq	6.5.4
lotus_domino	eq	6.5.1
lotus_domino	eq	7.0
lotus_domino	eq	6.5.0
lotus_domino	eq	6.5.4 fp2
lotus_domino	eq	6.5.5 fp2
lotus_domino	eq	6.5.3
lotus_domino	eq	7.0.2