7.8

CVE-2006-0121

Multiple memory leaks in IBM Lotus Notes and Domino Server before 6.5.5 allow attackers to cause a denial of service (memory consumption and crash) via unknown vectors related to (1) unspecified vectors during the SSL handshake (SPR# MKIN67MQVW), (2) the stash file during the SSL handshake (SPR# MKIN693QUT), and possibly other vectors. NOTE: due to insufficient information in the original vendor advisory, it is not clear whether there is an attacker role in other memory leaks that are specified in the advisory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmLotus Domino Version6.5.0
IbmLotus Domino Version6.5.1
IbmLotus Domino Version6.5.2
IbmLotus Domino Version6.5.3
IbmLotus Domino Version6.5.4
IbmLotus Domino Version6.5.4 Editionfp1
IbmLotus Domino Version6.5.4 Editionfp2
IbmLotus Notes Version6.5
IbmLotus Notes Version6.5.1
IbmLotus Notes Version6.5.2
IbmLotus Notes Version6.5.3
IbmLotus Notes Version6.5.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.7% 0.743
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/18328
Patch
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg27007054
http://www.securityfocus.com/bid/16158
Patch
http://www.vupen.com/english/advisories/2006/0081
http://www-10.lotus.com/ldd/r5fixlist.nsf/5c087391999d06e7852569280062619d/20f66e356a76c90f8525702a00420e08?OpenDocument&Highlight=0%2CMKIN67MQVW
http://www-10.lotus.com/ldd/r5fixlist.nsf/5c087391999d06e7852569280062619d/2221243535d88a2b8525701b00420cd6?OpenDocument&Highlight=0%2CMKIN693QUT
https://exchange.xforce.ibmcloud.com/vulnerabilities/24223