| Vulnerability Name: | CVE-2000-1203 (CCN-7012) | ||||||||
| Assigned: | 2001-08-20 | ||||||||
| Published: | 2001-08-20 | ||||||||
| Updated: | 2017-10-10 | ||||||||
| Summary: | Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Mon Aug 20 2001 - 16:19:32 CDT Lotus Domino DoS Source: CCN Type: BugTraq Mailing List, Tue Aug 21 2001 - 03:47:35 CDT Re: Lotus Domino DoS Source: MITRE Type: CNA CVE-2000-1203 Source: VULN-DEV Type: UNKNOWN 20000520 Infinite loop in LOTUS NOTE 5.0.3. SMTP SERVER Source: CCN Type: Lotus Technote 191746 Domino R5 SMTP "Denial of Service" Attack Caused by Routing Loop Source: CCN Type: OSVDB ID: 10816 IBM Lotus Domino SMTP Server Forged Localhost Mail Header DoS Source: BUGTRAQ Type: UNKNOWN 20010823 Lotus Domino DoS solution Source: BID Type: Patch, Vendor Advisory 3212 Source: CCN Type: BID-3212 Lotus Domino Mail Loop Denial of Service Vulnerability Source: BUGTRAQ Type: UNKNOWN 20010820 Lotus Domino DoS Source: XF Type: UNKNOWN lotus-domino-bounced-message-dos(7012) Source: XF Type: UNKNOWN lotus-domino-bounced-message-dos(7012) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||