In association with heise online

28 March 2007, 15:16

Several holes in IBM Lotus Domino

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

IBM has reported several vulnerabilities in Lotus Domino which enable remote attackers to provoke a server crash or inject malicious script code into the user's web browser. The manufacturer is offering updates which close these holes.

A cross-site scripting vulnerability can be found in the Active Content Filter of Lotus Domino's Webmail component. It may not filter script code correctly, allowing malicious scripts to be executed in the user's browser within the Webmail security zone.

With LDAP servers, remoter attackers can use manipulated requests to trigger a buffer overflow, causing the server to crash. No system authentication is apparently needed for this. IMAP servers also have trouble handling manipulated requests from the local network and may crash when the buffer overflows.

The bugs affect Lotus Domino before versions 6.5.6 and 7.0.2 Fix Pack 1 (FP1). Lotus Domino server administrators can download updates which remove these vulnerabilities from the IBM web site.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit