CVE-2005-2712 — IBM Lotus Domino vulnerability

3 documents3 sources

Severity

7.8HIGHNVD

EPSS

2.6%

top 14.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Lotus Domino

Timeline

PublishedDec 31

Latest updateMay 1

Description

The LDAP server (nldap.exe) in IBM Lotus Domino before 7.0.1, 6.5.5, and 6.5.4 FP2 allows remote attackers to cause a denial of service (crash) via a long bind request, which triggers a null dereference.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/lotus_domino18 versions+17

Patches

Patch: securitytracker.com ↗Patch: securitytracker.com ↗

🔴Vulnerability Details

GHSA

GHSA-cw2v-h66j-3w97: The LDAP server (nldap↗2022-05-01

▶

CVEList

CVE-2005-2712: The LDAP server (nldap↗2006-02-15

▶