CVE-2010-3407
CVE-2010-3407
Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows remote attackers to execute arbitrary code via a long e-mail address in an ORGANIZER:mailto header in an iCalendar calendar-invitation e-mail message, aka SPR NRBY7ZPJ9V.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 3
cve_referencewww.exploit-db.com/exploits/15005não verificadoexploitdbwww.exploit-db.com/exploits/15005não verificadoexploitdbwww.exploit-db.com/exploits/17151não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://labs.mwrinfosecurity.com/advisories/lotus_domino_ical_stack_buffer_overflow/http://labs.mwrinfosecurity.com/files/Advisories/mwri_lotus-domino-ical-stack-overflow_2010-09-14.pdfhttp://secunia.com/advisories/41433http://securitytracker.com/id?1024448https://exchange.xforce.ibmcloud.com/vulnerabilities/61790http://www-01.ibm.com/support/docview.wss?uid=swg21446515http://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/52f9218288b51dcb852576c600741f72?OpenDocumenthttp://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/613a204806e3f211852576e2006afa3d?OpenDocumenthttp://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/af36678d60bd74288525778400534d7c?OpenDocumenthttp://www.exploit-db.com/exploits/15005http://www.securityfocus.com/archive/1/513706/100/0/threadedhttp://www.securityfocus.com/bid/43219