1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: IBM Lotus Domino Nnotes

Web Attack: IBM Lotus Domino Nnotes

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to a stack overflow vulnerability in IBM Lotus Notes application.

Additional Information

IBM Lotus Domino is a client/server product designed for collaborative working environments.

This flaw is caused while processing POST requests through 'tHPRAgentName' variable. When handling specially crafted POST requests, the application will copy them into a fixed-size buffer without checking the length.

Successfully exploiting this issue may allow remote attackers to execute arbitrary code with SYSTEM-level privileges. Successful exploits will completely compromise affected computers. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • IBM Lotus Domino 8.5.2

Response

N/A
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube