Back to CVE Browser

CVE-2003-0178

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0800%

EPSS Percentile25.92th

PublishedApr 2, 2003

Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in Lotus Domino Web Server before 6.0.1 allow remote attackers to cause a denial of service or execute arbitrary code via (1) the s_ViewName option in the PresetFields parameter for iNotes, (2) the Foldername option in the PresetFields parameter for iNotes, or (3) a long Host header, which is inserted into a long Location header and used during a redirect operation.

Affected Platforms (CPE)

📦

Ibm

Lotus Domino Web Server

= 6.0

References & Advisories

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0080.html

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0081.html

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0082.html

🔗 http://marc.info/?l=bugtraq&m=104550063431461&w=2

🔗 http://marc.info/?l=bugtraq&m=104550063431463&w=2

🔗 http://marc.info/?l=bugtraq&m=104550335103136&w=2

🔗 http://marc.info/?l=ntbugtraq&m=104558777331345&w=2

🔗 http://marc.info/?l=ntbugtraq&m=104558777531350&w=2

Related Vulnerabilities

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...

CVE-2008-224010.0

Stack-based buffer overflow in the Web Server service in IBM Lotus Domino before 7.0.3 FP1, and 8.x before 8.0.1, allows remote at...

CVE-2007-00677.8

Unspecified vulnerability in the Lotus Domino Web Server 6.0, 6.5.x before 6.5.6, and 7.0.x before 7.0.3 allows remote attackers t...

CVE-2001-08477.5

Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the default navigator $defaultNav v...