exploit the possibilities

IBM Lotus Notes/Domino 8.5.2 FP3 Denial Of Service

IBM Lotus Notes/Domino 8.5.2 FP3 Denial Of Service
Posted Jan 1, 2012
Authored by XiaoPeng Zhang | Site fortinet.com

IBM Lotus Notes/Domino server suffers from a remote denial of service vulnerability that can be triggered by a malformed TCP packet. Versions 8.5.2 FP3 and earlier, 8.5.1, 8.5 and 8.0.x are affected.

tags | advisory, remote, denial of service, tcp
advisories | CVE-2011-1393
MD5 | b0fcd9bd798394eb4a62a2a83e81c95b

IBM Lotus Notes/Domino 8.5.2 FP3 Denial Of Service

Change Mirror Download
[FG-VD-11-007]IBM Lotus Notes/Domino Server Remote Denial of Service Vulnerability
2011.December.30

Summary:

Fortinet's FortiGuard Labs has discovered a Remote Denial of Service Vulnerability in IBM Lotus Notes/Domino Server.

Impact:

Remote Denial of Service

Risk:

High (CVSS Base Score:7.8)

Affected Software:

IBM Lotus Domino Server
8.5.2 FP3 and earlier
8.5.1
8.5
8.0.x

Additional Information:

The vulnerability occurs while IBM Lotus Notes/Domino Server handles malformed TCP packet. Successful exploitation could cause the server

crash instantly.

Solutions:
==========

Use the solution provided by IBM: http://www-01.ibm.com/support/docview.wss?uid=swg21575247

Fortinet customers who subscribe to Fortinet¡¯s intrusion prevention (IPS) service should be protected against this Remote Denial Of Service
vulnerability. Fortinet¡¯s IPS service is one component of FortiGuard Subscription Services, which also offer comprehensive solutions such

as antivirus, Web content filtering and antispam capabilities. These services enable protection against threats on both application and

network layers. FortiGuard Services are continuously updated by the FortiGuard Global Security Research Team, which enables Fortinet to

deliver a combination of multi-layered security intelligence and true zero-day protection from new and emerging threats. These updates are

delivered to all FortiGate, FortiMail and FortiClient products. Fortinet strictly follows responsible disclosure guidelines to ensure

optimum protection during a threat's lifecycle.

Acknowledgement:
================

Xiaopeng Zhang of Fortinet's FortiGuard Labs

References:
===========

http://www.fortiguard.com/advisory/FGA-2011-40.html
http://www-01.ibm.com/support/docview.wss?uid=swg21575247

CVE ID: CVE-2011-1393
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2011-1393

*** Please note that this message and any attachments may contain confidential
and proprietary material and information and are intended only for the use of
the intended recipient(s). If you are not the intended recipient, you are hereby
notified that any review, use, disclosure, dissemination, distribution or copying
of this message and any attachments is strictly prohibited. If you have received
this email in error, please immediately notify the sender and destroy this e-mail
and any attachments and all copies, whether electronic or printed.
Please also note that any views, opinions, conclusions or commitments expressed
in this message are those of the individual sender and do not necessarily reflect
the views of Fortinet, Inc., its affiliates, and emails are not binding on
Fortinet and only a writing manually signed by Fortinet's General Counsel can be
a binding commitment of Fortinet to Fortinet's customers or partners. Thank you. ***

Comments

RSS Feed Subscribe to this comment feed

No comments yet, be the first!

Login or Register to post a comment

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close