CVE-2003-0179

Buffer overflow in the COM Object Control Handler for Lotus Domino 6.0.1 and earlier allows remote attackers to execute arbitrary code via multiple attack vectors, as demonstrated using the InitializeUsingNotesUserName method in the iNotes ActiveX control.

Published: Apr 2, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0179
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / lotus_domino_web_server	6.0	6.0.x
ibm / lotus_notes_client	6.0	6.0.x

http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0082.html
http://marc.info/?l=bugtraq&m=104550124032513&w=2
http://marc.info/?l=bugtraq&m=104550335103136&w=2
http://marc.info/?l=ntbugtraq&m=104558778131373&w=2
http://marc.info/?l=ntbugtraq&m=104558778331387&w=2
http://www-1.ibm.com/support/docview.wss?uid=swg21104543
http://www.cert.org/advisories/CA-2003-11.html
http://www.ciac.org/ciac/bulletins/n-065.shtml
http://www.kb.cert.org/vuls/id/571297
http://www.nextgenss.com/advisories/lotus-inotesclientaxbo.txt
http://www.securityfocus.com/bid/6872
https://exchange.xforce.ibmcloud.com/vulnerabilities/11339

Vulnerability Database

289,784

CVE-2003-0179