Lotus Domino LDAP Server Crafted Packet Remote DoS

This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.


Synopsis :

The remote LDAP server is affected by a denial of service
vulnerability.

Description :

The LDAP server on the remote host appears to have crashed after being
sent a malformed request. The specific request used is known to crash
the LDAP server in Lotus Domino 7.0. By leveraging this flaw, an
attacker may be able to deny service to legitimate users.

See also :

http://archives.neohapsis.com/archives/dailydave/2006-q1/0111.html

Solution :

Unknown at this time.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 3.9
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Family: Denial of Service

Nessus Plugin ID: 20890 (lotus_domino_ldap_dos.nasl)

Bugtraq ID: 16523

CVE ID: CVE-2006-0580

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial