Stack-based Buffer Overflow in IBM Domino Products
CVE-2015-1902

Currently unrated

Key Information:

Vendor: IBM
Status: Domino
Vendor: CVE Published:; 20 May 2015

Summary

The vulnerability allows remote attackers to exploit a stack-based buffer overflow in IBM Domino versions before 8.5.3 FP6 IF7 and 9.0.1 FP3 IF3. By sending a specially crafted BMP image to the targeted server, an attacker could execute arbitrary code. This highlights the critical need for users to ensure their systems are updated with the latest security patches and adhere to best practices in handling image files to prevent unauthorized access.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21883245

x_refsource_CONFIRM

http://www.securitytracker.com/id/1032376

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/74597

vdb-entryx_refsource_BID

EPSS Score

34% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 20, 2015
Vulnerability Reserved
Feb 19, 2015