CVSS: 9.8EPSS: 77%CPEs: 11EXPL: 4CVE-2010-3407 – IBM Lotus Domino iCalendar - Email Address Stack Buffer Overflow
https://notcve.org/view.php?id=CVE-2010-3407
16 Sep 2010 — Stack-based buffer overflow in the MailCheck821Address function in nnotes.dll in the nrouter.exe service in the server in IBM Lotus Domino 8.0.x before 8.0.2 FP5 and 8.5.x before 8.5.1 FP2 allows remote attackers to execute arbitrary code via a long e-mail address in an ORGANIZER:mailto header in an iCalendar calendar-invitation e-mail message, aka SPR NRBY7ZPJ9V. Desbordamiento de búfer basado en pila en la función MailCheck821Address en nnotes.dll en el servicio nrouter.exe en el servidor IBM Lotus Domino... • https://www.exploit-db.com/exploits/15005 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 0CVE-2010-0358
https://notcve.org/view.php?id=CVE-2010-0358
20 Jan 2010 — Heap-based buffer overflow in the server in IBM Lotus Domino 7 and 8.5 FP1 allows remote attackers to cause a denial of service (daemon exit) and possibly have unspecified other impact via a long string in a crafted LDAP message to a TCP port, a different vulnerability than CVE-2009-3087. Desbordamiento de búfer basado en pila en el servidor IBM Lotus Domino v7 y v8.5 FP1 permite a atacantes remotos producir una denegación de servicio (salida del demonio) y posiblemente obtener un impacto desconocido a trav... • http://intevydis.blogspot.com/2010/01/lotus-domino-7-probably-8-ldap-heap.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •