Lotus Domino Security Vulnerabilities and Issues — Lotus Domino CVE List

Lucene search

IbmLotus Domino

3 matches found

CVE•added 2007/03/28 9:19 p.m.•49 views

CVE-2007-1675

Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to cause a denial of service via a long username.

10CVSS6.5AI score0.46656EPSS

CVE•added 2007/03/28 10:19 p.m.•49 views

CVE-2007-1739

Heap-based buffer overflow in the LDAP server in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to cause a denial of service (crash) via a long, malformed DN request, which causes only the lower 16 bits of the string length to be used in memory allocation.

7.8CVSS6.8AI score0.15201EPSS

CVE•added 2007/03/29 9:19 p.m.•34 views

CVE-2006-4843

Cross-site scripting (XSS) vulnerability in the Active Content Filter feature in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to inject arbitrary web script or HTML via unspecified "code sequences" that bypass the protection scheme.

4.3CVSS5.5AI score0.00759EPSS