Wednesday, May 21, 2008 10:17 AM
cmosby
IBM Lotus Domino 6 Web Server Cross-Site Scripting and Buffer Overflow - Secunia
IBM Lotus Domino 6 Web Server Cross-Site Scripting and Buffer Overflow
Secunia Advisory:
SA30332
Release Date:
2008-05-21
Critical:
Highly critical
Impact:
Cross Site Scripting
DoS
System access
Where:
From remote
Solution Status:
Unpatched
Software:
IBM Lotus Domino 6.x
CVE reference:
CVE-2008-2240 (Secunia mirror)
Description:
Some vulnerabilities have been reported in IBM Lotus Domino, which can be exploited by malicious people to conduct cross-site scripting attacks or potentially compromise a vulnerable system.
1) A boundary error within the Lotus Domino Web Server can be exploited to cause a stack-based buffer overflow via a specially crafted HTTP request with an overly long "Accept-Language" header.
Successful exploitation may allow execution of arbitrary code.
2) Certain unspecified input passed to the servlet engine/Web container is not properly sanitised before being used. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
The vulnerabilities are reported in various 6.x versions.
Solution:
Upgrade to version 7.0.3 Fix Pack 1 (FP1) or 8.0.1.
Provided and/or discovered by:
1) MWR InfoSecurity
2) Reported by the vendor.
Original Advisory:
IBM:
http://www-1.ibm.com/support/docview.wss?uid=swg21303057http://www-1.ibm.com/support/docview.wss?uid=swg21303296MWR InfoSecurity:
http://www.mwrinfosecurity.com/public...anguage-stack-overflow_2008-05-20.pdfOther References:
SA30310:
http://secunia.com/advisories/30310/
Filed under: Patch Management, Internet Applications, Security, Enterprise Applications, Software Vulnerabilites