IBM.Lotus.Domino.Upload.ActiveX.Control.Buffer.Overflow

description-logoDescription

This indicates an attempt to exploit a buffer-overflow vulnerability in IBM Lotus Domino Web Access.
This vulnerability is caused by improper handling of long strings passed to the "General_ServerName" property in dwa7W.dll. A remote attacker can exploit this to execute arbitrary code.

affected-products-logoAffected Products

IBM Lotus Domino Web Access dwa7W.dll 7.0.34.1

Impact logoImpact

System Compromise: remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

We are not aware of any patch that is available at this time.
Set the kill bit for the affected ActiveX control.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-07-18 14.652 Sig Added
2019-07-16 14.649 Sig Added