SMTP: IBM Domino GIF Processing Remote Code Execution

This signature detects attempts to exploit a known vulnerability against IBM Lotus Domino Server. A successful exploit can lead to remote code execution.

Extended Description

IBM Domino 8.5 before 8.5.3 FP6 IF4 and 9.0 before 9.0.1 FP3 IF2 allows remote attackers to execute arbitrary code or cause a denial of service (integer truncation and application crash) via a crafted GIF image, aka SPR KLYH9T7NT9.

Affected Products

Ibm domino

References

CVE: CVE-2015-0135

Short Name
SMTP:VULN:IBM-LOTUS-GIF-PARS-CE
Severity
Major
Recommended
True
Recommended Action
None
Category
SMTP
Keywords
CVE-2015-0135 Code Domino Execution GIF IBM Processing Remote
Release Date
08/24/2015
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Ibm

CVSS Score

10.0

Found a potential security threat?