Blog

Domino Security Vulnerability pre 8.5.2 FP4


Tags :




The National Vulnerability Database has issued a release dated Dec 27 2011 for Domino 8 servers prior to applying FP4 for Domino 8.5.2

Overview

Unspecified vulnerability in the authentication functionality in the server in IBM Lotus Domino 8.x before 8.5.2 FP4 allows remote attackers to cause a denial of service (daemon crash) via a crafted Notes RPC packet.

IBM has answered this with technote #1575247 specifying you should upgrade to Domino 8.5.3 or apply FP4 for 8.5.2.  Previous versions are affected.