Several holes in IBM Lotus Domino
IBM has reported several vulnerabilities in Lotus Domino which enable remote attackers to provoke a server crash or inject malicious script code into the user's web browser. The manufacturer is offering updates which close these holes.
A cross-site scripting vulnerability can be found in the Active Content Filter of Lotus Domino's Webmail component. It may not filter script code correctly, allowing malicious scripts to be executed in the user's browser within the Webmail security zone.
With LDAP servers, remoter attackers can use manipulated requests to trigger a buffer overflow, causing the server to crash. No system authentication is apparently needed for this. IMAP servers also have trouble handling manipulated requests from the local network and may crash when the buffer overflows.
The bugs affect Lotus Domino before versions 6.5.6 and 7.0.2 Fix Pack 1 (FP1). Lotus Domino server administrators can download updates which remove these vulnerabilities from the IBM web site.
- Lotus Domino Web Access Cross-Site Scripting Vulnerability, IBM's security advisory
- IBM Lotus Domino Buffer Overflow Vulnerability in LDAP Server Task, IBM's security advisory
- IBM Lotus Domino IMAP Server Buffer Overflow Vulnerability, IBM's security advisory
- Download updates for the versions of Lotus Domino affected