Bugtraq mailing list archives

Re: [SAFER] Buffer overflow in Lotus Domino SMTP Server

From: CaptainBig <captainbig () BIGFOOT COM>
Date: Mon, 6 Nov 2000 10:39:34 +0800

__________________________________________________________

      S.A.F.E.R. Security Bulletin 001103.EXP.1.9
__________________________________________________________


TITLE    : Buffer overflow in Lotus Domino SMTP Server
DATE     : November 03, 2000
NATURE   : Remote execution of code, Denial-of-Service
AFFECTED : Lotus Notes/Domino 5 (up to and including 5.04)


However, Lotus Notes/Domino Release 5.0.4 QMR fix list indicates that
the problem was already fixed in 5.04.

See
http://www.support.lotus.com/sims2.nsf/802ee480bdd32d0b852566fa005acf8d/191a4daad1890947852569580069a59d?OpenDocument&Highlight=2,ENVID

and click on
Mail Server - Router - SMTP

The SPR# is CDOY4GFP35

Are you sure 5.04 is affected?  Or the technote is lying?

Current thread:

[SAFER] Buffer overflow in Lotus Domino SMTP Server Security Research Team (Nov 04)
- <Possible follow-ups>
- Re: [SAFER] Buffer overflow in Lotus Domino SMTP Server CaptainBig (Nov 06)
  - Re: [SAFER] Buffer overflow in Lotus Domino SMTP Server Fyodor (Nov 07)
  - Re: [SAFER] Buffer overflow in Lotus Domino SMTP Server Vanja Hrustic (Nov 07)