CVE
- Id
- 4480
- CVE No.
- CVE-2002-0086
- Status
- Candidate
- Description
- Buffer overflow in bindsock in Lotus Domino 5.0.4 and 5.0.7 on Linux allows local users to gain root privileges via a long (1) Notes_ExecDirectory or (2) PATH environment variable.
- Phase
- Modified (20050528)
- Votes
- ACCEPT(3) Cole, Foat, Green | MODIFY(1) Balinsky | NOOP(3) Christey, Wall, Ziese
- Comments
- Christey> Consider adding BID:4317 | Christey> Consider adding BID:4319 | CHANGE> [Balinsky changed vote from ACCEPT to MODIFY] | Balinsky> Should say 5.0.4 through 5.0.9 (not including version 5.0.9a, which includes the fix) | Balinsky> Additional Modification: Should say "Linux and Solaris" | CHANGE> [Foat changed vote from NOOP to ACCEPT] | Christey> CONFIRM:http://www-1.ibm.com/support/manager.wss?rs=463&rt=0&org=sims&doc=92579CFD6F92B39A85256B7D006AC89B | CONFIRM:http://www-1.ibm.com/support/manager.wss?rs=463&rt=0&org=sims&doc=D52DF997ABFFFC8385256B7D0062AD5C | VULNWATCH:20020429 [VulnWatch] eSecurityOnline Security Advisory 4126 - Lotus Domino bindsock Notes_ExecDirectory buffer overflow vulnerability | URL:http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0046.html | VULNWATCH:20020429 [VulnWatch] eSecurityOnline Security Advisory 4124 - Lotus Domino bindsock PATH buffer overflow vulnerability | URL:http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0044.html
