Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provided by inotes6.dll, inotes6w.dll, dwa7.dll, and dwa7w.dll, in Domino 6.x and 7.x allow remote attackers to execute arbitrary code, as demonstrated by an overflow from a long General_ServerName property value when calling the InstallBrowserHelperDll function in the Upload Module in the dwa7.dwa7.1 control in dwa7w.dll 7.0.34.1.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino Web Access ActiveX控件栈溢出漏洞
Vulnerability Description
IBM Lotus Domino Web Access是Lotus Domino服务器基于web的消息和协作界面。 IBM Lotus Domino Web Access的dwa7.dwa7.1 ActiveX控件(dwa7W.dll)在处理传送给General_ServerName属性的参数时存在栈溢出漏洞,远程攻击者可能利用此漏洞控制用户客户端。 如果为该属性分配了超长的字符串然后调用了InstallBrowserHelperDll()方式的话,就会触发这个溢出,导致执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A