Memory Leak Vulnerabilities in IBM Lotus Notes and Domino Server
CVE-2006-0121

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino; Lotus Notes; Lotus Domino Enterprise Server
Vendor: CVE Published:; 9 January 2006

Summary

Multiple memory leaks in IBM Lotus Notes and Domino Server prior to version 6.5.5 enable potential denial of service attacks through excessive memory consumption and application crashes. These vulnerabilities are linked to unspecified conditions during the SSL handshake processes, particularly involving stash files, which may allow an attacker to exploit the system. Due to a lack of detailed information in the vendor's advisory, the exact attacker role in relation to other identified memory leaks remains unclear.

References

http://www-1.ibm.com/support/docview.wss?uid=swg27007054

x_refsource_CONFIRM

http://www.securityfocus.com/bid/16158

vdb-entryx_refsource_BID

http://secunia.com/advisories/18328

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jan 9, 2006
Vulnerability Reserved
Jan 9, 2006