Remote Code Execution and Denial of Service Vulnerability in IBM Domino
CVE-2015-0117

Currently unrated

Key Information:

Vendor: IBM
Status: Domino
Vendor: CVE Published:; 6 April 2015

What is CVE-2015-0117?

The LDAP Server in IBM Domino versions 8.5.x prior to 8.5.3 FP6 IF6 and 9.x before 9.0.1 FP3 IF1 contains a vulnerability that allows remote attackers to execute arbitrary code or to cause a denial of service through memory corruption. This flaw arises from unspecified vectors and highlights the need for immediate updates and patches to ensure the security of the affected systems.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21700029

x_refsource_CONFIRM

http://www.securitytracker.com/id/1032027

vdb-entryx_refsource_SECTRACK

EPSS Score

13% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 6, 2015
Vulnerability Reserved
Nov 18, 2014