IBM.Lotus.Domino.Web.Server.DoS
Description
This indicates an attack attempt against a denial-of-service vulnerability against the IBM Lotus Domino Web Server.
The vulnerability is caused by a bug in NLSCCSTR.DLL. The web service cannot handle long GET requests containing UNICODE decimal values of length 430 characters. Providing such a GET request causes a stack overflow which results in the process crashing.
Affected Products
IBM Lotus Domino Server 6.5.1
Impact
Denial of Service:Remote attackers can crash the vulnerable systems.
Recommended Actions
Apply the appropriate patch from the vendor or upgrade to a non-vulnerable version if available.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |