IBM Domino 9.0.0 < 9.0.0 Interim Fix 4 iNotes Buffer Overflow (credentialed check)

High Nessus Plugin ID 74225


The remote host has software installed that is affected a buffer overflow vulnerability.


The remote host has a version of IBM Domino (formerly Lotus Domino) 9.0.0 prior to 9.0.0 Interim Fix 4 (IF4) , and thus is affected by a buffer overflow error in the iNotes component that could allow an authenticated user to execute arbitrary code.


Upgrade to IBM Domino 9.0.0 IF4 or later.

See Also

Plugin Details

Severity: High

ID: 74225

File Name: lotus_domino_9_0_0_if4.nasl

Version: $Revision: 1.1 $

Type: local

Agent: windows

Family: Windows

Published: 2014/05/28

Modified: 2014/05/29

Dependencies: 55818

Risk Information

Risk Factor: High


Base Score: 7.1

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:H/Au:S/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:domino, cpe:/a:ibm:inotes

Required KB Items: SMB/Domino/Installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/10/08

Vulnerability Publication Date: 2013/09/17

Reference Information

CVE: CVE-2013-4068

BID: 62481

OSVDB: 97453