Technical Description

Multiple vulnerabilities have been identified in IBM Lotus Domino, which could be exploited by remote attackers to cause a denial of service, or execute arbitrary commands or scripting code.

The first issue is caused by a buffer overflow error in the Web Server service when processing HTTP requests containing an overly long "Accept-Language" header, which could be exploited by remote unauthenticated attackers to crash or compromise an affected server.

The second vulnerability is caused by input validation errors in the servlet engine/Web container, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected Web site.

Affected Products

IBM Lotus Domino versions 6.x
IBM Lotus Domino versions 7.x
IBM Lotus Domino versions 8.x

Solution

Upgrade to IBM Lotus Domino version 7.0.3 Fix Pack 1 (FP1) or 8.0.1 :
http://www.ibm.com/software/lotus/support/upgradecentral/index.html

References

http://www.vupen.com/english/advisories/2008/1597
http://www.ibm.com/support/docview.wss?rs=463&uid=swg21303057
http://www.ibm.com/support/docview.wss?rs=463&uid=swg21303296
http://www.mwrinfosecurity.com/publications/mwri_ibm-lotus-domino-accept-language-stack-overflow_2008-05-20.pdf

Credits

Vulnerabilities reported by MWR InfoSecurity and the vendor.

ChangeLog

2008-05-21 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.