vendor:
Lotus Domino Server
by:
Mati Aharoni
7.5
CVSS
HIGH
Remote Exploit
CWE
Product Name: Lotus Domino Server
Affected Version From: 6.5
Affected Version To: 6.5
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows 2003 server SP0
2007
IBM Lotus Domino Server 6.5 PRE AUTH Remote Exploit
This is a remote exploit for IBM Lotus Domino Server 6.5. It sends a bindshell into memory and triggers an overwrite to gain control. The exploit has been tested on Windows 2003 server SP0.
Mitigation:
Apply the latest patches and updates for IBM Lotus Domino Server 6.5 to prevent this exploit.