漏洞类别:Local
漏洞等级: 
漏洞信息
IBM Lotus Domino is an advanced platform for hosting social business applications. IBM Lotus Notes allows businesses to connect using enterprise email.
IBM Lotus Domino and IBM Lotus Notes are vulnerable to multiple buffer overflow vulnerabilities. An attacker can send malformed messages to the Lotus Domino Server to cause the Buffer Overflow. In case of IBM Lotus Notes an attacker can execute arbitrary code via a malicious cai:// URL.
Affected Versions
IBM Lotus Domino Prior to 8.5.3
IBM Lotus Notes prior to 8.0.2 FP6, 8.5.1 FP5 and 8.5.2
漏洞危害
Successful exploitation of the vulnerability allows denial of service attacks or remote code execution.
解决方案
The vendor has released a fix to resolve the issue, please refer to the advisories for recommended fixes that apply to IBM iNotes :
swg21461514
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论