CVE-2003-0179

Severity

75%

Complexity

99%

Confidentiality

106%

Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and earlier allows remote attackers to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control.

Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and earlier allows remote attackers to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

IBM Lotus

First reported 22 years ago

2003-04-02 05:00:00

Last updated 7 years ago

2017-07-11 01:29:00

Affected Software

IBM Lotus Domino Web Server 6.0

6.0

IBM Lotus Notes Client 6.0

6.0

References

20030217 Lotus iNotes Client ActiveX Control Buffer Overrun (#NISR17022003c)

20030217 Lotus iNotes Client ActiveX Control Buffer Overrun (#NISR17022003c)

20030217 Domino Advisories UPDATE

20030217 Lotus iNotes Client ActiveX Control Buffer Overrun (#NISR17022003c)

20030217 Domino Advisories UPDATE

CA-2003-11

US Government Resource

N-065

VU#571297

Patch, Third Party Advisory, US Government Resource

http://www.nextgenss.com/advisories/lotus-inotesclientaxbo.txt

6872

Patch, Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg21104543

lotus-notes-activex-bo(11339)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.