fkie_nvd - fkie_cve-2000-1203

fkie_cve-2000-1203

Vulnerability from fkie_nvd

Published

2001-08-20 04:00

Modified

2024-11-20 23:34

Severity ?

Summary

Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.

References

URL	Tags
cve@mitre.org	http://marc.info/?l=vuln-dev&m=95886062521327&w=2
cve@mitre.org	http://www.securityfocus.com/archive/1/209754
cve@mitre.org	http://www.securityfocus.com/bid/3212	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-01-21&end=2002-01-27&mid=209116&threads=1
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/7012
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=vuln-dev&m=95886062521327&w=2
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/209754
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/3212	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/cgi-bin/archive.pl?id=1&start=2002-01-21&end=2002-01-27&mid=209116&threads=1
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/7012

Impacted products

Vendor	Product	Version
lotus	domino	4.6.1
lotus	domino	4.6.3
lotus	domino	4.6.4
lotus	domino	5.0.1
lotus	domino	5.0.2
lotus	domino	5.0.3
lotus	domino	5.0.4
lotus	domino	5.0.5
lotus	domino	5.0.6
lotus	domino	5.0.7
lotus	domino	5.0.8

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:lotus:domino:4.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "640FCA2F-155E-4A05-9435-9E1446B65D42",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:4.6.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A113B07-5CBE-4B28-9AE5-627FB3222640",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:4.6.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "55D71763-C009-4257-9899-51B8EAC3D096",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB826C12-8B6E-4636-A6FC-90D47CCB706B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A190AC8-E0AC-4CCF-8E5B-62F97633173A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B990B6CA-8288-47E6-8D09-5F56FC844F24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6A9DC42-4A06-4FA0-9E4A-2ABC52D1D083",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "B5C9CC25-44BD-4000-A5BD-62B55E9855D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F8C3E35-9D62-4E10-91AA-EFFC40A35918",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "B9F784ED-9EB5-4CBA-98BE-B6C78F5B66DC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:lotus:domino:5.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "80022584-A581-4DE2-9F2B-EC971F4D6DA3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop."
    }
  ],
  "id": "CVE-2000-1203",
  "lastModified": "2024-11-20T23:34:14.810",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2001-08-20T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=vuln-dev\u0026m=95886062521327\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/209754"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/3212"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/cgi-bin/archive.pl?id=1\u0026start=2002-01-21\u0026end=2002-01-27\u0026mid=209116\u0026threads=1"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7012"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=vuln-dev\u0026m=95886062521327\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/209754"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/3212"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/cgi-bin/archive.pl?id=1\u0026start=2002-01-21\u0026end=2002-01-27\u0026mid=209116\u0026threads=1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7012"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

cve-2000-1203

Vulnerability from cvelistv5

Published

2004-09-01 04:00

Modified

2024-08-08 05:45