Lotus Domino LDAP Server Crafted Packet Remote DoS

This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.


Synopsis :

The remote LDAP server is affected by a denial of service
vulnerability.

Description :

The LDAP server on the remote host appears to have crashed after being
sent a malformed request. The specific request used is known to crash
the LDAP server in Lotus Domino 7.0. By leveraging this flaw, an
attacker may be able to deny service to legitimate users.

See also :

http://archives.neohapsis.com/archives/dailydave/2006-q1/0111.html

Solution :

Unknown at this time.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 3.9
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Family: Denial of Service

Nessus Plugin ID: 20890 (lotus_domino_ldap_dos.nasl)

Bugtraq ID: 16523

CVE ID: CVE-2006-0580