CyberSec.Space Logo
返回 CVE 浏览器

CVE-2011-0915

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1280%
EPSS Percentile35.34th
Published2011年2月8日
Last Modified2026年4月29日

Vulnerability Description

Stack-based buffer overflow in nrouter.exe in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a long name parameter in a Content-Type header in a malformed Notes calendar (aka iCalendar or iCal) meeting request, aka SPR KLYH87LL23.

Affected Platforms (CPE)

📦
Ibm

Lotus Domino

<= 8.5.2.2
📦
Ibm

Lotus Domino

= 4.6.1
📦
Ibm

Lotus Domino

= 4.6.3
📦
Ibm

Lotus Domino

= 4.6.4
📦
Ibm

Lotus Domino

= 5.0
📦
Ibm

Lotus Domino

= 5.0.1
📦
Ibm

Lotus Domino

= 5.0.2
📦
Ibm

Lotus Domino

= 5.0.3
📦
Ibm

Lotus Domino

= 5.0.4
📦
Ibm

Lotus Domino

= 5.0.4a
📦
Ibm

Lotus Domino

= 5.0.5
📦
Ibm

Lotus Domino

= 5.0.6
📦
Ibm

Lotus Domino

= 5.0.6a
📦
Ibm

Lotus Domino

= 5.0.7
📦
Ibm

Lotus Domino

= 5.0.7a
📦
Ibm

Lotus Domino

= 5.0.8
📦
Ibm

Lotus Domino

= 5.0.8a
📦
Ibm

Lotus Domino

= 5.0.9
📦
Ibm

Lotus Domino

= 5.0.9a
📦
Ibm

Lotus Domino

= 5.0.10
📦
Ibm

Lotus Domino

= 5.0.11
📦
Ibm

Lotus Domino

= 6.0
📦
Ibm

Lotus Domino

= 6.0.1
📦
Ibm

Lotus Domino

= 6.0.1.1
📦
Ibm

Lotus Domino

= 6.0.1.2
📦
Ibm

Lotus Domino

= 6.0.1.3
📦
Ibm

Lotus Domino

= 6.0.2
📦
Ibm

Lotus Domino

= 6.0.2.1
📦
Ibm

Lotus Domino

= 6.0.2.2
📦
Ibm

Lotus Domino

= 6.0.2_cf2
📦
Ibm

Lotus Domino

= 6.0.3
📦
Ibm

Lotus Domino

= 6.0.4
📦
Ibm

Lotus Domino

= 6.0.5
📦
Ibm

Lotus Domino

= 6.5
📦
Ibm

Lotus Domino

= 6.5.0
📦
Ibm

Lotus Domino

= 6.5.1
📦
Ibm

Lotus Domino

= 6.5.2
📦
Ibm

Lotus Domino

= 6.5.2.1
📦
Ibm

Lotus Domino

= 6.5.3
📦
Ibm

Lotus Domino

= 6.5.3.1
📦
Ibm

Lotus Domino

= 6.5.4
📦
Ibm

Lotus Domino

= 6.5.4.1
📦
Ibm

Lotus Domino

= 6.5.4.2
📦
Ibm

Lotus Domino

= 6.5.4.3
📦
Ibm

Lotus Domino

= 6.5.5
📦
Ibm

Lotus Domino

= 6.5.6
📦
Ibm

Lotus Domino

= 7.0
📦
Ibm

Lotus Domino

= 7.0.1
📦
Ibm

Lotus Domino

= 7.0.1.1
📦
Ibm

Lotus Domino

= 7.0.2
📦
Ibm

Lotus Domino

= 7.0.2.1
📦
Ibm

Lotus Domino

= 7.0.2.2
📦
Ibm

Lotus Domino

= 7.0.2.3
📦
Ibm

Lotus Domino

= 7.0.3
📦
Ibm

Lotus Domino

= 7.0.3.1
📦
Ibm

Lotus Domino

= 7.0.4
📦
Ibm

Lotus Domino

= 7.0.4.1
📦
Ibm

Lotus Domino

= 7.0.4.2
📦
Ibm

Lotus Domino

= 8.0.1
📦
Ibm

Lotus Domino

= 8.0.2
📦
Ibm

Lotus Domino

= 8.0.2.1
📦
Ibm

Lotus Domino

= 8.0.2.2
📦
Ibm

Lotus Domino

= 8.0.2.3
📦
Ibm

Lotus Domino

= 8.0.2.4
📦
Ibm

Lotus Domino

= 8.0.2.5
📦
Ibm

Lotus Domino

= 8.0.2.6
📦
Ibm

Lotus Domino

= 8.5.1
📦
Ibm

Lotus Domino

= 8.5.1.1
📦
Ibm

Lotus Domino

= 8.5.1.2
📦
Ibm

Lotus Domino

= 8.5.1.3
📦
Ibm

Lotus Domino

= 8.5.1.4
📦
Ibm

Lotus Domino

= 8.5.1.5
📦
Ibm

Lotus Domino

= 8.5.2
📦
Ibm

Lotus Domino

= 8.5.2.1

References & Advisories

🔗 http://secunia.com/advisories/43208
🔗 http://www-01.ibm.com/support/docview.wss?uid=swg21461514
🔗 http://www.securityfocus.com/archive/1/516245/100/0/threaded
🔗 http://zerodayinitiative.com/advisories/ZDI-11-048/
🔗 http://secunia.com/advisories/43208
🔗 http://www-01.ibm.com/support/docview.wss?uid=swg21461514
🔗 http://www.securityfocus.com/archive/1/516245/100/0/threaded
🔗 http://zerodayinitiative.com/advisories/ZDI-11-048/

相关漏洞威胁

CVE-2000-104710.0

Buffer overflow in SMTP service of Lotus Domino 5.0.4 and earlier allows remote attackers to cause a denial of service and possibl...

CVE-2001-013010.0

Buffer overflow in HTML parser of the Lotus R5 Domino Server before 5.06, and Domino Client before 5.05, allows remote attackers t...

CVE-2000-104610.0

Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of serv...

CVE-2001-084610.0

Lotus Domino 5.x allows remote attackers to read files or execute arbitrary code by requesting the ReplicaID of the Web Administra...