QwikSec

Security Database

CVE

CWE

Training

CVE-2005-0986

Published: Apr 6, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote attackers to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, which causes the stack to be exhausted. NOTE: IBM has reported that it is unable to replicate this issue.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www-1.ibm.com/support/docview.wss?uid=swg21202446

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

20050406 IBM Lotus Domino Server Web Service DoS Vulnerability

third-party-advisory

x_refsource_IDEFENSE

http://news.zdnet.co.uk/software/applications/0%2C39020384%2C39194293%2C00.htm

x_refsource_MISC

vdb-entry

x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.