SMTP: Lotus Notes Domino Web Access Message Handling Denial of Service
This signature detects large e-mail messages (>12 MB) sent to Lotus Domino servers through a commonly published exploit. Attackers can cause Lotus Domino to exhaust all system memory and cause the service to stop responding.
Extended Description
Lotus Domino Server is reported prone to a remote denial of service vulnerability. The issue is reported to exist when a malicious email that is received on the affected server, is opened through the Domino Web Access interface by a client. A remote attacker may exploit this condition to deny Lotus Domino service to legitimate users.
Affected Products
Ibm lotus_domino
References
BugTraq: 10641
CVE: CVE-2004-0668
URL: http://www-1.ibm.com/support/docview.wss?uid=swg21173969
Short Name
SMTP:MAL:NOTES-BIGMAIL-DOS
Severity
Minor
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
Access CVE-2004-0668 Denial Domino Handling Lotus Message Notes Service Web bid:10641 of
Release Date
08/26/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3725
False Positive
Unknown
Vendors
Ibm
CVSS Score
5.0