RSS

Category: Lotus Domino

Buffer Overflow in iNotes Client ActiveX Control

Buffer Overflow in iNotes Client ActiveX Control February 19, 2003 Risk level: High Threat: This buffer overflow may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the user logged into the target. Versions Affected: Domino R6 Summary: A buffer overflow exists in one of the ActiveX controls included with the iNotes client. This buffer overflow occurs when the function “InitializeUsingNotesUserName” is called with a long username as the first parameter. An attacker…

Click for complete article >>

Buffer Overflow in Redirected Host/Location

Buffer Overflow in Redirected Host/Location February 19, 2003 To determine if you are vulnerable to this attack, download AppDetective fromhttp://www.appsecinc.com/products/appdetective/domino Risk level: High Threat: This buffer overflow may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the database server. Versions Affected: Domino R6 Summary: A buffer overflow exists in the Domino HTTP web server. This buffer overflow occurs when the web server receives a request which will be redirected to a different…

Click for complete article >>

Buffer Overflow in iNotes s_ViewName

Posted February 19, 2003 by egonzales in Database Vendor, Lotus Domino, Lotus Domino, Security Advisory, Topics with 0 comments

Buffer Overflow in iNotes s_ViewName February 19, 2003 Risk level: High Threat: This buffer overflow may allow an attacker to overwrite the stack and execute arbitrary code under the security context of the Domino server. Versions Affected: Domino R6 Summary: A buffer overflow exists in the iNotes component of the Domino application server. This buffer overflow occurs when a long value is set for the s_ViewName parameter. When the Domino server processes the request, it is copied into a buffer…

Click for complete article >>
Powered by