CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-1675

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1090%
EPSS Percentile41.60th
Published2007年3月28日
Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to cause a denial of service via a long username.

Affected Platforms (CPE)

📦
Ibm

Lotus Domino

= 6.5.0
📦
Ibm

Lotus Domino

= 6.5.1
📦
Ibm

Lotus Domino

= 6.5.2
📦
Ibm

Lotus Domino

= 6.5.3
📦
Ibm

Lotus Domino

= 6.5.4
📦
Ibm

Lotus Domino

= 6.5.4
📦
Ibm

Lotus Domino

= 6.5.4
📦
Ibm

Lotus Domino

= 6.5.5
📦
Ibm

Lotus Domino

= 6.5.5
📦
Ibm

Lotus Domino

= 6.5.5
📦
Ibm

Lotus Domino

= 7.0
📦
Ibm

Lotus Domino

= 7.0.1
📦
Ibm

Lotus Domino

= 7.0.2

References & Advisories

🔗 http://secunia.com/advisories/24633
🔗 http://www-1.ibm.com/support/docview.wss?uid=swg21257028
🔗 http://www.securityfocus.com/bid/23172
🔗 http://www.securityfocus.com/bid/23173
🔗 http://www.securitytracker.com/id?1017823
🔗 http://www.vupen.com/english/advisories/2007/1133
🔗 http://www.zerodayinitiative.com/advisories/ZDI-07-011.html
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/33276

相关漏洞威胁

CVE-2000-104710.0

Buffer overflow in SMTP service of Lotus Domino 5.0.4 and earlier allows remote attackers to cause a denial of service and possibl...

CVE-2001-013010.0

Buffer overflow in HTML parser of the Lotus R5 Domino Server before 5.06, and Domino Client before 5.05, allows remote attackers t...

CVE-2000-104610.0

Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of serv...

CVE-2001-084610.0

Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administra...