CVE-2005-2712

The LDAP server (nldap.exe) in IBM Lotus Domino before 7.0.1, 6.5.5, and 6.5.4 FP2 allows remote attackers to cause a denial of service (crash) via a long bind request, which triggers a null dereference.

Published: Dec 31, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-2712
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / lotus_domino	6.0.5	6.0.5.x
ibm / lotus_domino	6.5.2	6.5.2.x
ibm / lotus_domino	6.0	6.0.x
ibm / lotus_domino	6.0.4	6.0.4.x
ibm / lotus_domino	6.5.4	6.5.4.x
ibm / lotus_domino	6.0.2.2	6.0.2.2.x
ibm / lotus_domino	6.0.1.1	6.0.1.1.x
ibm / lotus_domino	6.5	6.5.x
ibm / lotus_domino	6.5.2.1	6.5.2.1.x
ibm / lotus_domino	6.5.3.1	6.5.3.1.x
ibm / lotus_domino	6.5.1	6.5.1.x
ibm / lotus_domino	6.0.1.2	6.0.1.2.x
ibm / lotus_domino	7.0	7.0.x
ibm / lotus_domino	6.0.2.1	6.0.2.1.x
ibm / lotus_domino	6.0.1	6.0.1.x
ibm / lotus_domino	6.5.3	6.5.3.x
ibm / lotus_domino	6.0.3	6.0.3.x
ibm / lotus_domino	6.0.1.3	6.0.1.3.x

Vulnerability Database

289,697

CVE-2005-2712