7.5

CVE-2003-0179

EPSS 35.64%
Veröffentlicht 02.04.2003 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and earlier allows remote attackers to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 15

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Lotus Domino Web Server Version6.0

Ibm ≫ Lotus Notes Client Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	35.64%	0.967

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.cert.org/advisories/CA-2003-11.html

US Government Resource

http://www.ciac.org/ciac/bulletins/n-065.shtml

http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0082.html

http://marc.info/?l=bugtraq&m=104550335103136&w=2

http://marc.info/?l=ntbugtraq&m=104558778331387&w=2

http://marc.info/?l=bugtraq&m=104550124032513&w=2

http://marc.info/?l=ntbugtraq&m=104558778131373&w=2

http://www-1.ibm.com/support/docview.wss?uid=swg21104543

http://www.kb.cert.org/vuls/id/571297

Patch

Third Party Advisory

US Government Resource

http://www.nextgenss.com/advisories/lotus-inotesclientaxbo.txt

http://www.securityfocus.com/bid/6872

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/11339

https://nvd.nist.gov/vuln/detail/CVE-2003-0179

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0179

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0179

EUVD