CVE-2010-0358Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM Lotus Domino

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
10.0CRITICALNVD
CNA5.0
EPSS
1.7%
top 17.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Domino
Timeline
PublishedJan 20
Latest updateMay 2

Description

Heap-based buffer overflow in the server in IBM Lotus Domino 7 and 8.5 FP1 allows remote attackers to cause a denial of service (daemon exit) and possibly have unspecified other impact via a long string in a crafted LDAP message to a TCP port, a different vulnerability than CVE-2009-3087.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDibm/lotus_domino7.0, 8.5.0.1+1

🔴Vulnerability Details

2
GHSA
GHSA-5xjg-wggg-qh5w: Heap-based buffer overflow in the server in IBM Lotus Domino 7 and 82022-05-02
CVEList
CVE-2010-0358: Heap-based buffer overflow in the server in IBM Lotus Domino 7 and 82010-01-20
CVE-2010-0358 — IBM Lotus Domino vulnerability | cvebase