CVE-2002-0086 — Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Lotus Domino

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 78.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Lotus Domino

Timeline

PublishedMar 15

Latest updateApr 30

Description

Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDibm/lotus_domino5.0.4, 5.0.7+1

Patches

Patch: www.esecurityonline.com ↗Patch: www.esecurityonline.com ↗Patch: www.esecurityonline.com ↗

🔴Vulnerability Details

GHSA

GHSA-h47f-59w9-ghf7: Buffer overflow in bindsock in Lotus Domino 5↗2022-04-30

▶

CVEList

CVE-2002-0086: Buffer overflow in bindsock in Lotus Domino 5↗2002-03-07

▶