Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2010-3407
Description:Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows remote attackers to execute arbitrary code via a long e-mail address in an ORGANIZER:mailto header in an iCalendar calendar-invitation e-mail message, aka SPR NRBY7ZPJ9V.
Test IDs: 1.3.6.1.4.1.25623.1.0.901157  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2010-3407
BugTraq ID: 43219
http://www.securityfocus.com/bid/43219
Bugtraq: 20100914 ZDI-10-177: IBM Lotus Domino iCalendar MAILTO Stack Overflow Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/513706/100/0/threaded
http://www.exploit-db.com/exploits/15005
http://labs.mwrinfosecurity.com/files/Advisories/mwri_lotus-domino-ical-stack-overflow_2010-09-14.pdf
http://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/52f9218288b51dcb852576c600741f72?OpenDocument
http://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/613a204806e3f211852576e2006afa3d?OpenDocument
http://www-10.lotus.com/ldd/r5fixlist.nsf/8d1c0550e6242b69852570c900549a74/af36678d60bd74288525778400534d7c?OpenDocument
http://www.zerodayinitiative.com/advisories/ZDI-10-177/
http://securitytracker.com/id?1024448
http://secunia.com/advisories/41433
http://www.vupen.com/english/advisories/2010/2381
XForce ISS Database: lotus-domino-icalendar-bo(61790)
https://exchange.xforce.ibmcloud.com/vulnerabilities/61790




© 1998-2024 E-Soft Inc. All rights reserved.