Intrusion Prevention

IBM.Lotus.Domino.Web.Access.ActiveX.Controls.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in IBM Domino Web Access.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted packet passed to the iNotes Web Access ActiveX controls. It allows a remote attacker to execute arbitrary code.

Affected Products

IBM Domino Web Access 8.0.2 FP4
IBM Domino Web Access 8.0.1
IBM Domino Web Access 7.0.3
IBM Domino Web Access 7.0.1
IBM Domino Web Access 6.5.6
IBM Domino Web Access 6.5.5
IBM Domino Web Access 6.5.5
IBM Domino Web Access 6.5.4
IBM Domino Web Access 6.5.3
IBM Domino Web Access 6.5.2
IBM Domino Web Access 6.5.1
IBM Domino Web Access 6.0.5
IBM Domino Web Access 6.0.4
IBM Domino Web Access 6.0.3
IBM Domino Web Access 6.0.2 .2
IBM Domino Web Access 6.0.2 .1
IBM Domino Web Access 6.0.1 .3
IBM Domino Web Access 6.0.1 .2
IBM Domino Web Access 6.0.1 .1
IBM Domino Web Access 6.0.1
IBM Domino Web Access 8.0
IBM Domino Web Access 7.0
IBM Domino Web Access 6.5
IBM Domino Web Access 6.0

Impact

System compromise

Recommended Actions

Upgrade to the latest version of IBM Domino Web Access (7.0.4 or 8.5 or later):
http://www-01.ibm.com/support/docview.wss?uid=swg21421808

CVE References

CVE-2010-0919