Intrusion Prevention

IBM.Lotus.Domino.Notes.Mail.Template.Automatic.Script.Execution

Description

This indicates an attack attempt to exploit a remote code-execution vulnerability in IBM Lotus Domino Notes Mail.
The vulnerability results from insecure code responsible for processing the email attachment. It can be exploited via a crafted email, leading to remote code execution.

Affected Products

IBM Lotus Domino Enterprise Server 6.5.4
IBM Lotus Domino Enterprise Server 6.0.5
IBM Lotus Domino Enterprise Server 5.0.13
IBM Lotus Domino 6.5.4
IBM Lotus Domino 6.0.5
IBM Lotus Domino 5.0.13

Impact

System Comprise: Remote attackers can gain control of the vulnerable system.

Recommended Actions

Currently we are not aware of any vendor-supplied fix for this issue.

CVE References

CVE-2005-2175