Lotus Domino SMTP ENVID Variable Handling RCE
Critical Nessus Plugin ID 10543
SynopsisThe remote SMTP server is affected by a remote code execution vulnerability.
DescriptionThe Lotus Domino SMTP server running on the remote host is affected by a buffer overflow condition due to improper validation of input to the ENVID variable within a MAIL FROM command. An unauthenticated, remote attack can exploit this, via a overly long ENVID value, to cause a denial of service condition or possibly the execution of arbitrary code.
SolutionUpgrade to Lotus Notes/Domino version 5.0.6 or later. This reportedly fixes the vulnerability.