IBM Lotus Domino SMTP Server Malformed Meeting Request (vCal) DoS

This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.


Synopsis :

The remote SMTP server is susceptible to a denial of service attack.

Description :

The remote host is running Lotus Domino, a messaging and collaboration
application suite.

According to the version number in its banner, the SMTP server bundled
with Lotus Domino on the remote host reportedly suffers from a denial
of service flaw. Specifically, the routing server will consumes 100%
of the CPU when attempting to process a malformed 'vcal' meeting
request. An unauthenticated attacker may be able to leverage this
issue to deny service to legitimate users.

In addition, IBM has identified several additional vulnerabilities that
affect this version.

See also :

http://www.securityfocus.com/advisories/10761
http://www.nessus.org/u?3532045c

Solution :

Upgrade to Lotus Domino 6.5.4 FP1, 6.5.5 or 7.0 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: SMTP problems

Nessus Plugin ID: 21778 (domino_smtp_vcal_dos.nasl)

Bugtraq ID: 18020

CVE ID: CVE-2006-0119