{"vuid":"VU#927988","idnumber":"927988","name":"IBM Lotus Domino LDAP server DN message heap buffer overflow","keywords":["IBM","Lotus Domino","LDAP server","buffer overflow","malformed request"],"overview":"The IBM Lotus Domino LDAP server is vulnerable to a heap buffer overflow, which may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service.","clean_desc":"IBM Lotus Domino server software provides email, calendar, scheduling, and collaboration services. The LDAP component of Lotus Domino is vulnerable to a heap buffer overflow if it handles a DN (Distinguished Name) message with a string larger than 65535 bytes.","impact":"A remote, unauthenticated attacker may be able to execute arbitrary code with the privileges of the LDAP server component or cause a denial of service.","resolution":"Apply an update\nThis issue is addressed in Lotus Domino 7.0.2 Fix Pack 1 (FP1) and 6.5.6., as specified in IBM Technote 1257248.","workarounds":"Block or restrict access Block or restrict access to the Lotus Domino LDAP service (typically 389/tcp) from untrusted networks such as the internet.","sysaffected":"","thanks":"This vulnerability was reported by iDefense Labs, who in turn credit an anonymous discoverer.","author":"This document was written by Will Dormann.","public":["http://www-1.ibm.com/support/docview.wss?uid=swg21257248","http://secunia.com/advisories/24633/"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2007-03-28T13:55:07Z","publicdate":"2007-03-28T00:00:00Z","datefirstpublished":"2007-03-28T17:44:29Z","dateupdated":"2007-03-28T17:44:38Z","revision":6,"vrda_d1_directreport":"0","vrda_d1_population":"3","vrda_d1_impact":"3","cam_widelyknown":"16","cam_exploitation":"0","cam_internetinfrastructure":"12","cam_population":"12","cam_impact":"13","cam_easeofexploitation":"7","cam_attackeraccessrequired":"15","cam_scorecurrent":"8.5995","cam_scorecurrentwidelyknown":"9.828","cam_scorecurrentwidelyknownexploited":"15.9705","ipprotocol":"tcp","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":8.5995,"vulnote":null}