CVE-2010-3407
CVE-2010-3407
Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows remote attackers to execute arbitrary code via a long e-mail address in an ORGANIZER:mailto header in an iCalendar calendar-invitation e-mail message, aka SPR NRBY7ZPJ9V.
Productos afectados
n/a · n/aPoCs públicas encontradas — 3
cve_referencewww.exploit-db.com/exploits/15005no verificadoexploitdbwww.exploit-db.com/exploits/15005no verificadoexploitdbwww.exploit-db.com/exploits/17151no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://labs.mwrinfosecurity.com/advisories/lotus_domino_ical_stack_buffer_overflow/http://labs.mwrinfosecurity.com/files/Advisories/mwri_lotus-domino-ical-stack-overflow_2010-09-14.pdfhttp://secunia.com/advisories/41433http://securitytracker.com/id?1024448https://exchange.xforce.ibmcloud.com/vulnerabilities/61790http://www-01.ibm.com/support/docview.wss?uid=swg21446515http://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/52f9218288b51dcb852576c600741f72?OpenDocumenthttp://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/613a204806e3f211852576e2006afa3d?OpenDocumenthttp://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/af36678d60bd74288525778400534d7c?OpenDocumenthttp://www.exploit-db.com/exploits/15005http://www.securityfocus.com/archive/1/513706/100/0/threadedhttp://www.securityfocus.com/bid/43219