Lucene search
HistoryFeb 08, 2011 - 10:00 p.m.
CVE-2011-0915
cve-2011-0915
stack-based buffer overflow
nrouter.exe
ibm lotus domino
arbitrary code execution
content-type header
notes calendar
icalendar
ical
meeting request
nvd
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.845 High
EPSS
Percentile
98.5%
Stack-based buffer overflow in nrouter.exe in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a long name parameter in a Content-Type header in a malformed Notes calendar (aka iCalendar or iCal) meeting request, aka SPR KLYH87LL23.
Affected configurations
Node
ibmlotus_dominoRange≤8.5.2.2
ORibmlotus_dominoMatch4.6.1
ORibmlotus_dominoMatch4.6.3
ORibmlotus_dominoMatch4.6.4
ORibmlotus_dominoMatch5.0
ORibmlotus_dominoMatch5.0.1
ORibmlotus_dominoMatch5.0.2
ORibmlotus_dominoMatch5.0.3
ORibmlotus_dominoMatch5.0.4
ORibmlotus_dominoMatch5.0.4a
ORibmlotus_dominoMatch5.0.5
ORibmlotus_dominoMatch5.0.6
ORibmlotus_dominoMatch5.0.6a
ORibmlotus_dominoMatch5.0.7
ORibmlotus_dominoMatch5.0.7a
ORibmlotus_dominoMatch5.0.8
ORibmlotus_dominoMatch5.0.8a
ORibmlotus_dominoMatch5.0.9
ORibmlotus_dominoMatch5.0.9a
ORibmlotus_dominoMatch5.0.10
ORibmlotus_dominoMatch5.0.11
ORibmlotus_dominoMatch6.0
ORibmlotus_dominoMatch6.0.1
ORibmlotus_dominoMatch6.0.1.1
ORibmlotus_dominoMatch6.0.1.2
ORibmlotus_dominoMatch6.0.1.3
ORibmlotus_dominoMatch6.0.2
ORibmlotus_dominoMatch6.0.2.1
ORibmlotus_dominoMatch6.0.2.2
ORibmlotus_dominoMatch6.0.2_cf2
ORibmlotus_dominoMatch6.0.3
ORibmlotus_dominoMatch6.0.4
ORibmlotus_dominoMatch6.0.5
ORibmlotus_dominoMatch6.5
ORibmlotus_dominoMatch6.5.0
ORibmlotus_dominoMatch6.5.1
ORibmlotus_dominoMatch6.5.2
ORibmlotus_dominoMatch6.5.2.1
ORibmlotus_dominoMatch6.5.3
ORibmlotus_dominoMatch6.5.3.1
ORibmlotus_dominoMatch6.5.4
ORibmlotus_dominoMatch6.5.4.1
ORibmlotus_dominoMatch6.5.4.2
ORibmlotus_dominoMatch6.5.4.3
ORibmlotus_dominoMatch6.5.5
ORibmlotus_dominoMatch6.5.6
ORibmlotus_dominoMatch7.0
ORibmlotus_dominoMatch7.0.1
ORibmlotus_dominoMatch7.0.1.1
ORibmlotus_dominoMatch7.0.2
ORibmlotus_dominoMatch7.0.2.1
ORibmlotus_dominoMatch7.0.2.2
ORibmlotus_dominoMatch7.0.2.3
ORibmlotus_dominoMatch7.0.3
ORibmlotus_dominoMatch7.0.3.1
ORibmlotus_dominoMatch7.0.4
ORibmlotus_dominoMatch7.0.4.1
ORibmlotus_dominoMatch7.0.4.2
ORibmlotus_dominoMatch8.0.1
ORibmlotus_dominoMatch8.0.2
ORibmlotus_dominoMatch8.0.2.1
ORibmlotus_dominoMatch8.0.2.2
ORibmlotus_dominoMatch8.0.2.3
ORibmlotus_dominoMatch8.0.2.4
ORibmlotus_dominoMatch8.0.2.5
ORibmlotus_dominoMatch8.0.2.6
ORibmlotus_dominoMatch8.5.1
ORibmlotus_dominoMatch8.5.1.1
ORibmlotus_dominoMatch8.5.1.2
ORibmlotus_dominoMatch8.5.1.3
ORibmlotus_dominoMatch8.5.1.4
ORibmlotus_dominoMatch8.5.1.5
ORibmlotus_dominoMatch8.5.2
ORibmlotus_dominoMatch8.5.2.1
Related
cvelist
cvelist
CVE-2011-0915
2011-02-08 21:00:00
zdi
zdi
prion
prion
Stack overflow
2011-02-08 22:00:00
nvd
nvd
CVE-2011-0915
2011-02-08 22:00:02
d2
d2
DSquare Exploit Pack: D2SEC_LOTUSCAL2
2011-02-08 22:00:00
kaspersky
kaspersky
KLA10199 ACE vulnerability in IBM Lotus Domino
2011-02-08 00:00:00
openvas
openvas
IBM Lotus Domino Multiple Remote Buffer Overflow Vulnerabilities
2011-05-09 00:00:00
nessus
nessus
IBM Lotus Domino 8.5.x < 8.5.3 Multiple Vulnerabilities
2013-04-26 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.845 High
EPSS
Percentile
98.5%
Related for CVE-2011-0915