Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0986


Vulnerability Score 5.0 5.0
CVE Id CVE-2005-0986
Last Modified 07 Mar 2011 09:20:55
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote attackers to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, which causes the stack to be exhausted. NOTE: IBM has reported that it is unable to replicate this issue.

Vulnerable Systems


  • Ibm Lotus Domino Server 6.0.3

  • Ibm Lotus Domino Server 6.5.1


VUPEN - ADV-2005-0322

IDEFENSE - 20050406 IBM Lotus Domino Server Web Service DoS Vulnerability


SECUNIA - 14858

MISC -,39020384,39194293,00.htm

Last Updated: 27 May 2016 10:40:00