IBM Lotus Domino 6.0 Multiple Vulnerabilities

This script is Copyright (C) 2003-2014 Tenable Network Security, Inc.


Synopsis :

Arbitrary code may be run on the remote host.

Description :

The remote Lotus Domino server, according to its version number, is
vulnerable to various buffer overflow and denial of service attacks.

An attacker may use these to disable this server or execute arbitrary
commands on the remote host.

See also :

http://www.nextgenss.com/advisories/lotus-hostlocbo.txt

Solution :

Update to Domino 6.0.1

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.5
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Web Servers

Nessus Plugin ID: 11386 (domino6_overflows.nasl)

Bugtraq ID: 6870
6871

CVE ID: CVE-2003-0178