|
|
| |
| There is a DoS in the current version of Lotus Domino as well as earlier versions. The DoS manifests itself on Lotus Domino servers with the HTTP task running and SSL enabled. |
| |
Credit:
The information has been provided by Hendrik-Jan Verheij.
|
| |
Vulnerable systems:
Lotus Domino versions prior to 5.09 (including 5.08)
Immune systems:
Lotus Domino version 5.09
To recreate the problem, initiate a connection to the victim on port 443 using the command:
$ nmap '-sR'
This will target the SunRPC port using a NULL packet in an attempt to determine whether it is an RPC port, and if so, what program and version number it serves up.
This attempt will bring the domino test server down. The task that crashes is the nhttp task - it takes down the whole server.
Exploit:
$ nmap -n -p 443 -sR www.vicitim.com
Vendor response:
Lotus has acknowledged the issue and the internal reference number is SPR #MALR4Y6RL8
The issue has been fixed in Lotus Domino 5.09 which is available from http://www.notes.net as an incremental upgrade.
|
|
|
|
|
|
|
|
