Buffer Overflow in Lotus Domino ActiveX Control Vulnerability
CVE-2003-0179

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino Web Server; Lotus Notes Client
Vendor: CVE Published:; 2 April 2003

Summary

A buffer overflow vulnerability exists in the COM Object Control Handler of Lotus Domino versions 6.0.1 and earlier. This flaw allows remote attackers to exploit multiple attack vectors to execute arbitrary code within the context of the application. The vulnerability is particularly exposed through methods such as InitializeUsingNotesUserName in the iNotes ActiveX control, which can facilitate unauthorized access or manipulation of system resources.

References

http://marc.info/?l=bugtraq&m=104550335103136&w=2

mailing-listx_refsource_BUGTRAQ

http://www-1.ibm.com/support/docview.wss?uid=swg21104543

x_refsource_CONFIRM

http://www.cert.org/advisories/CA-2003-11.html

third-party-advisoryx_refsource_CERT

EPSS Score

35% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 2, 2003
Vulnerability Reserved
Mar 28, 2003