Vulnerability Details CVE-2003-0122
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.263
EPSS Ranking 96.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0125.html
- http://marc.info/?l=bugtraq&m=104757319829443&w=2
- http://www-1.ibm.com/support/docview.wss?rs=482&q=Domino&uid=swg21105101
- http://www.cert.org/advisories/CA-2003-11.html
- http://www.ciac.org/ciac/bulletins/n-065.shtml
- http://www.kb.cert.org/vuls/id/433489
- http://www.rapid7.com/advisories/R7-0010.html
- http://www.securityfocus.com/bid/7037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11526
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0125.html
- http://marc.info/?l=bugtraq&m=104757319829443&w=2
- http://www-1.ibm.com/support/docview.wss?rs=482&q=Domino&uid=swg21105101
- http://www.cert.org/advisories/CA-2003-11.html
- http://www.ciac.org/ciac/bulletins/n-065.shtml
- http://www.kb.cert.org/vuls/id/433489
- http://www.rapid7.com/advisories/R7-0010.html
- http://www.securityfocus.com/bid/7037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11526
Products affected by CVE-2003-0122
-
cpe:2.3:a:ibm:lotus_domino:4.6.1
-
cpe:2.3:a:ibm:lotus_domino:4.6.3
-
cpe:2.3:a:ibm:lotus_domino:4.6.4
-
cpe:2.3:a:ibm:lotus_domino:5.0
-
cpe:2.3:a:ibm:lotus_domino:5.0.1
-
cpe:2.3:a:ibm:lotus_domino:5.0.10
-
cpe:2.3:a:ibm:lotus_domino:5.0.11
-
cpe:2.3:a:ibm:lotus_domino:5.0.2
-
cpe:2.3:a:ibm:lotus_domino:5.0.3
-
cpe:2.3:a:ibm:lotus_domino:5.0.4
-
cpe:2.3:a:ibm:lotus_domino:5.0.4a
-
cpe:2.3:a:ibm:lotus_domino:5.0.5
-
cpe:2.3:a:ibm:lotus_domino:5.0.6
-
cpe:2.3:a:ibm:lotus_domino:5.0.6a
-
cpe:2.3:a:ibm:lotus_domino:5.0.7a
-
cpe:2.3:a:ibm:lotus_domino:5.0.8
-
cpe:2.3:a:ibm:lotus_domino:5.0.8a
-
cpe:2.3:a:ibm:lotus_domino:5.0.9
-
cpe:2.3:a:ibm:lotus_domino:5.0.9a
-
cpe:2.3:a:ibm:lotus_notes_client:5.0
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.1
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.10
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.11
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.2
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.3
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.4
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.5
-
cpe:2.3:a:ibm:lotus_notes_client:5.0.9a
-
cpe:2.3:a:ibm:lotus_notes_client:r5