CVE-2006-0119 (CNNVD-200601-080)
中文标题:
Lotus Domino SMTP Meeting请求远程拒绝服务漏洞
英文标题:
Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown ...
漏洞描述
中文描述:
IBM Lotus Domino Server软件可在各种操作系统上提供消息,日程安排等功能。 Lotus Domino在处理畸形邮件时存在漏洞,远程攻击者可能利用此漏洞导致服务器在传输邮件时挂起,无法继续正常处理邮件。在特殊的环境下,攻击者可以发送特制的消息,导致服务器在传送该消息时会挂起,消耗100%的CPU资源,在删除该消息之前无法传送新的邮件。请注意Domino Server不会崩溃,停止或重启服务器都无法解决这个问题,因为消息仍在队列中。
英文描述:
Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due to "potential security issues" as identified by SPR numbers (1) GPKS6C9J67 in Agents, (2) JGAN6B6TZ3 and (3) KSPR699NBP in the Router, (4) GPKS5YQGPT in Security, or (5) HSAO6BNL6Y in the Web Server. NOTE: vector 3 is related to an issue in NROUTER in IBM Lotus Notes and Domino Server before 6.5.4 FP1, 6.5.5, and 7.0, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted vCal meeting request sent via SMTP (aka SPR# KSPR699NBP).
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| ibm | lotus_domino | 6.5.0 | - | - |
cpe:2.3:a:ibm:lotus_domino:6.5.0:*:*:*:*:*:*:*
|
| ibm | lotus_domino | 6.5.1 | - | - |
cpe:2.3:a:ibm:lotus_domino:6.5.1:*:*:*:*:*:*:*
|
| ibm | lotus_domino | 6.5.2 | - | - |
cpe:2.3:a:ibm:lotus_domino:6.5.2:*:*:*:*:*:*:*
|
| ibm | lotus_domino | 6.5.3 | - | - |
cpe:2.3:a:ibm:lotus_domino:6.5.3:*:*:*:*:*:*:*
|
| ibm | lotus_domino | 6.5.4 | - | - |
cpe:2.3:a:ibm:lotus_domino:6.5.4:*:*:*:*:*:*:*
|
| ibm | lotus_domino_enterprise_server | 6.5.2 | - | - |
cpe:2.3:a:ibm:lotus_domino_enterprise_server:6.5.2:*:*:*:*:*:*:*
|
| ibm | lotus_domino_enterprise_server | 6.5.4 | - | - |
cpe:2.3:a:ibm:lotus_domino_enterprise_server:6.5.4:*:*:*:*:*:*:*
|
| ibm | lotus_notes | 6.5 | - | - |
cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*
|
| ibm | lotus_notes | 6.5.1 | - | - |
cpe:2.3:a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:*
|
| ibm | lotus_notes | 6.5.2 | - | - |
cpe:2.3:a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:*
|
| ibm | lotus_notes | 6.5.3 | - | - |
cpe:2.3:a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:*
|
| ibm | lotus_notes | 6.5.4 | - | - |
cpe:2.3:a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
cve.org
CVSS评分详情
AV:N/AC:L/Au:N/C:C/I:C/A:C
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2006-0119 |
2025-11-11 15:17:38 | 2025-11-11 07:32:30 |
| NVD | nvd_CVE-2006-0119 |
2025-11-11 14:51:47 | 2025-11-11 07:41:16 |
| CNNVD | cnnvd_CNNVD-200601-080 |
2025-11-11 15:08:49 | 2025-11-11 07:49:03 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 其他
- cnnvd_id: 未提取 -> CNNVD-200601-080
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- severity: SeverityLevel.MEDIUM -> SeverityLevel.CRITICAL
- cvss_score: 未提取 -> 10.0
- cvss_vector: NOT_EXTRACTED -> AV:N/AC:L/Au:N/C:C/I:C/A:C
- cvss_version: NOT_EXTRACTED -> 2.0
- affected_products_count: 0 -> 12
- data_sources: ['cve'] -> ['cve', 'nvd']