Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to cause a denial of service via a long username.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino IMAP服务器CRAM-MD5认证缓冲区溢出漏洞
Vulnerability Description
IBM Lotus Domino(又名IBM Domino)是美国IBM公司的一套用于托管社交商务应用的平台。该平台提供一个管理客户端和Web浏览器界面,并具有易于管理、总拥有成本低、高度安全等特点。 Lotus Domino服务器的CRAM-MD5认证过程中存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制服务器。 nimap.exe的CRAM-MD5认证机制默认绑定到TCP/s143端口,对用户名长度没有执行检查。如果所输入的用户名大于256字节的话就会在nnotes.dll.CStream::ToBa
CVSS Information
N/A
Vulnerability Type
N/A