Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Lotus Notes协议验证远程缓冲区溢出漏洞
Vulnerability Description
Lotus Notes和Domino服务器支持私有协议称为NotesRPC。一般称以Notes协议命名,这个协议绑定在TCP 1352口,但也可以使用NetBIOS、Netware SPX、Banyan Vines和modem拨号来传输。 Lotus在处理验证过程中存在漏洞,远程攻击者利用这个漏洞进行缓冲区溢出攻击,可能以WEB进程权限在系统上执行任意指令。 当Notes客户端连接服务器的时候,会与服务器建立会话以进行验证,验证包括客户端和服务器端一系列挑战交换。未授权客户端在交换阶段可以提交恶意数据而在
CVSS Information
N/A
Vulnerability Type
N/A