Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in tunekrnl in IBM Lotus Domino 6.x before 6.5.5 FP2 and 7.x before 7.0.2 allow local users to gain privileges and execute arbitrary code via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino多个TuneKrnl本地权限提升漏洞
Vulnerability Description
Lotus Domino/Notes服务器是一款基于WEB协同工作的应用程序架构,运行在Linux/Unix和Microsoft Windows操作系统平台下。 Lotus Domino的tunekrnl在处理数据拷贝时存在缓冲区溢出漏洞,本地攻击者可能利用此漏洞提升权限。 tunekrnl二进制程序用于设置Linux/proc sysctl,允许Domino增加正在运行内核的资源限制。这个二进制程序默认将所有者设置为root,并将set-user-id位设置为on。由于在进行拷贝时没有正确的验证输入的长
CVSS Information
N/A
Vulnerability Type
N/A