Vulnerability Name:

CVE-2007-1675 (CCN-33276)

Assigned:2007-03-27
Published:2007-03-27
Updated:2017-07-29
Summary:Buffer overflow in the CRAM-MD5 authentication mechanism in the IMAP server (nimap.exe) in IBM Lotus Domino before 6.5.6 and 7.x before 7.0.2 FP1 allows remote attackers to cause a denial of service via a long username.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
8.3 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
6.2 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2007-1675

Source: CCN
Type: SA24633
IBM Lotus Domino Script Insertion and Buffer Overflows

Source: SECUNIA
Type: Vendor Advisory
24633

Source: CCN
Type: SECTRACK ID: 1017823
IBM Lotus Domino IMAP Server CRAM-MD5 Username Buffer Overflow Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: IBM Technote (FAQ) 1257028
IBM Lotus Domino IMAP Server Buffer Overflow Vulnerability

Source: CONFIRM
Type: Patch
http://www-1.ibm.com/support/docview.wss?uid=swg21257028

Source: CCN
Type: OSVDB ID: 34091
IBM Lotus Domino IMAP Server (nimap.exe) CRAM-MD5 Authentication Remote Overflow DoS

Source: BID
Type: UNKNOWN
23172

Source: CCN
Type: BID-23172
IBM Lotus Domino IMAP Cram-MD5 Buffer Overflow Vulnerability

Source: BID
Type: Patch
23173

Source: CCN
Type: BID-23173
IBM Lotus Domino Web Access Email Message HTML Injection Vulnerability

Source: SECTRACK
Type: UNKNOWN
1017823

Source: VUPEN
Type: UNKNOWN
ADV-2007-1133

Source: MISC
Type: UNKNOWN
http://www.zerodayinitiative.com/advisories/ZDI-07-011.html

Source: XF
Type: UNKNOWN
domino-imap-crammd5-bo(33276)

Source: XF
Type: UNKNOWN
domino-imap-crammd5-bo(33276)

Source: CCN
Type: ZDI-07-011
IBM Lotus Domino IMAP Server CRAM-MD5 Authentication Buffer Overflow Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:lotus_domino:6.5.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.4:*:fp1:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.4:*:fp2:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.5:*:fp1:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:6.5.5:*:fp2:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:7.0.2:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ibm:lotus_domino:6.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:lotus_domino:7.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ibm lotus domino 6.5.0
    ibm lotus domino 6.5.1
    ibm lotus domino 6.5.2
    ibm lotus domino 6.5.3
    ibm lotus domino 6.5.4
    ibm lotus domino 6.5.4
    ibm lotus domino 6.5.4
    ibm lotus domino 6.5.5
    ibm lotus domino 6.5.5
    ibm lotus domino 6.5.5
    ibm lotus domino 7.0
    ibm lotus domino 7.0.1
    ibm lotus domino 7.0.2
    ibm lotus domino 6.5
    ibm lotus domino 7.0