IBM Lotus Domino Multiple Remote Buffer Overflow Vulnerabilities

The host is running IBM Lotus Domino Server and is prone to multiple vulnerabilities.

Multiple flaws are due to, - Stack overflow in the SMTP service, which allows remote attackers to execute arbitrary code via long arguments in a filename parameter in a malformed MIME e-mail message. - Buffer overflow in nLDAP.exe, which allows remote attackers to execute arbitrary code via an LDAP Bind operation. - Stack overflow in the NRouter service, which allows remote attackers to execute arbitrary code via long filenames associated with Content-ID and ATTACH:CID headers in attachments in malformed calendar-request e-mail messages. - Multiple stack overflows in the POP3 and IMAP services, which allows remote attackers to execute arbitrary code via non-printable characters in an envelope sender address. - The Remote Console, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors.

IBM Lotus Domino versions 8.5.3 prior

Upgrade to version 8.5.2 FP3 or 8.5.3 or later.