Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1203

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-1203
Last Modified 05 Sep 2008 04:22:54
Published 20 Aug 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-1203

Summary

Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.

Vulnerable Systems

Application

  • Lotus Domino 4.6.1

  • Lotus Domino 4.6.3

  • Lotus Domino 4.6.4

  • Lotus Domino 5.0.1

  • Lotus Domino 5.0.2

  • Lotus Domino 5.0.3

  • Lotus Domino 5.0.4

  • Lotus Domino 5.0.5

  • Lotus Domino 5.0.6

  • Lotus Domino 5.0.7

  • Lotus Domino 5.0.8


References

BID - 3212

XF - lotus-domino-bounced-message-dos(7012)

VULN-DEV - 20000520 Infinite loop in LOTUS NOTE 5.0.3. SMTP SERVER

BUGTRAQ - 20010820 Lotus Domino DoS

BUGTRAQ - 20010823 Lotus Domino DoS solution


Last Updated: 27 May 2016 10:36:04