Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer signedness error in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a GIOP client request, leading to a heap-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Domino服务器DIIOP实现ndiiop.exe整数符号错误漏洞
Vulnerability Description
IBM Lotus Domino(又名IBM Domino)是美国IBM公司的一套用于托管社交商务应用的平台。该平台提供一个管理客户端和Web浏览器界面,并具有易于管理、总拥有成本低、高度安全等特点。 IBM Lotus Domino 8.5.3之前版本中的服务器中的DIIOP实现中的ndiiop.exe中存在整数符号错误漏洞。远程攻击者可以借助GIOP客户端请求执行任意代码。该漏洞导致了基于堆的缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A