CVE-2015-1903

CWE-119 — Buffer Overflow3 documents3 sources

Severity

10.0CRITICAL

EPSS

34.0%

top 3.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Domino

Timeline

PublishedMay 20

Latest updateMay 13

Description

Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSN3Y.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDibm/domino5 versions+4

Patches

Patch: www-01.ibm.com ↗Patch: www-01.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-8868-2xhg-jv8v: Stack-based buffer overflow in IBM Domino 8↗2022-05-13

▶

CVEList

CVE-2015-1903: Stack-based buffer overflow in IBM Domino 8↗2015-05-20

▶