CVE-2007-4474 – IBM Domino Web Access 7.0 Upload Module - 'inotes6.dll' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-4474
Multiple stack-based buffer overflows in the IBM Lotus Domino Web Access ActiveX control, as provided by inotes6.dll, inotes6w.dll, dwa7.dll, and dwa7w.dll, in Domino 6.x and 7.x allow remote attackers to execute arbitrary code, as demonstrated by an overflow from a long General_ServerName property value when calling the InstallBrowserHelperDll function in the Upload Module in the dwa7.dwa7.1 control in dwa7w.dll 7.0.34.1. Múltiples desbordamientos de búfer basado en pila en el control ActiveX IBM Lotus Domino Web Access, proporcionado en inotes6.dll, inotes62.dll, dwa7.dll, y dwa7w.dll, en Domino 6.x y 7.x permiten a atacantes remotos ejecutar código de su elección, como se ha demostrado mediante un desbordamiento con un valor largo de la propiedad General_ServerName cuando se llama a la función InstallBrowserHelperDll del módulo Upload en el control dwa7.dwa7.1 de dwa7w.dll 7.0.34.1. • https://www.exploit-db.com/exploits/4818 https://www.exploit-db.com/exploits/4820 https://www.exploit-db.com/exploits/5111 https://www.exploit-db.com/exploits/16502 http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/059233.html http://osvdb.org/40954 http://secunia.com/advisories/28184 http://www.kb.cert.org/vuls/id/963889 http://www.securityfocus.com/bid/26972 http://www.securitytracker.com/id?1019138 http://www.vupen.com/english/advisories/2007 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-5924
https://notcve.org/view.php?id=CVE-2007-5924
Cross-site scripting (XSS) vulnerability in the Web Server (HTTP) task in IBM Lotus Domino before 6.5.6 FP2, and 7.x before 7.0.2 FP2, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la tarea del Servidor Web (HTTP) en el IBM Lotus Domino anterior al 6.5.6 FP2 y el 7.x anterior al 7.0.2 FP2, permite a atacantes remotos autenticados la inyección de secuencias de comandos web o HTML de su elección a través de vectores sin especificar. • http://jvn.jp/jp/JVN%2384565055/index.html http://osvdb.org/39720 http://secunia.com/advisories/27509 http://www-1.ibm.com/support/docview.wss?uid=swg21263871 http://www-1.ibm.com/support/docview.wss?uid=swg27010980 http://www.vupen.com/english/advisories/2007/3700 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2007-5701
https://notcve.org/view.php?id=CVE-2007-5701
Incomplete blacklist vulnerability in the Certificate Authority (CA) in IBM Lotus Domino before 7.0.3 allows local users, or attackers with physical access, to obtain sensitive information (passwords) when an administrator enters a "ca activate" or "ca unlock" command with any uppercase character, which bypasses a blacklist designed to suppress password logging, resulting in cleartext password disclosure in the console log and Admin panel. Vulnerabilidad de lista negra incompleta en la Autoridad de Certificación (CA) de IBM Lotus Domino versiones anteriores a 7.0.3 permite a usuarios locales, o atacantes con acceso físico, obtener información confidencial (contraseñas) cuando un administrador introduce un comando "ca activate" ó "ca unlock" con cualquier caracter mayúsuclas, lo cual evita una lista negra diseñada para evitar autenticación con contraseña, provocando la visualización de la contraseña en texto en claro por la consola de trazas y el panel de administración. • http://osvdb.org/40952 http://secunia.com/advisories/27321 http://www-1.ibm.com/support/docview.wss?uid=swg21261095 http://www.securityfocus.com/bid/26176 http://www.vupen.com/english/advisories/2007/3598 https://exchange.xforce.ibmcloud.com/vulnerabilities/37372 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-310: Cryptographic Issues •
CVE-2007-5700
https://notcve.org/view.php?id=CVE-2007-5700
The Evaluate LotusScript method in IBM Lotus Domino before 7.0.3 uses an incorrect security context for @ formula commands in some circumstances, which might allow remote authenticated users to gain privileges and obtain sensitive information. El método Evaluate LotusScript de IBM Lotus Domino versiones anteriores a 7.0.3 utiliza un contexto de seguridad incorrecto para comandos de fórumla @ en algunas circustancias, lo cual podría permitir a usuarios remotos autenticados obtener privilegios y conseguir información confidencial. • http://osvdb.org/40951 http://secunia.com/advisories/27321 http://www-1.ibm.com/support/docview.wss?uid=swg21273266 http://www.securityfocus.com/bid/26176 http://www.vupen.com/english/advisories/2007/3598 https://exchange.xforce.ibmcloud.com/vulnerabilities/37369 •
CVE-2007-3510
https://notcve.org/view.php?id=CVE-2007-3510
Buffer overflow in the IMAP service in IBM Lotus Domino before 6.5.6 FP2, and 7.x before 7.0.3, allows remote authenticated users to execute arbitrary code via a long mailbox name. Desbordamiento de búfer en el servicio IMAP de IBM Lotus Domino versiones anteriores a 6.5.6 FP2, y 7.x versiones anteriores a 7.0.3, permite a usuarios remotos autenticados ejecutar código de su elección mediante un nombre de buzón de correo largo. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=605 http://secunia.com/advisories/27321 http://www-1.ibm.com/support/docview.wss?uid=swg21270623 http://www.securityfocus.com/bid/26176 http://www.securitytracker.com/id?1018854 http://www.vupen.com/english/advisories/2007/3598 https://exchange.xforce.ibmcloud.com/vulnerabilities/37365 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •