CVE-2006-0120 Information

Description

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 allow attackers to cause a denial of service (application crash) via multiple vectors involving (1) a malformed message sent to an \Out Of Office\ agent (SPR LPEE6DMQWJ) (2) the compact command (RTIN5U2SAJ) (3) malformed bitmap images (MYAA6FH5HW) (4) the \Delete Attachment\ action (YPHG6844LD) (5) parsing certificates from a remote Certificate Table (AELE6DZFJW) and (6) creating a SSL key ring with the Domino Administration client (NSUA4FQPTN).

Reference

http://secunia.com/advisories/18328 http://www.securityfocus.com/bid/16158 http://www.vupen.com/english/advisories/2006/0081 http://www-1.ibm.com/support/docview.wss?uid=swg27007054 http://www-10.lotus.com/ldd/r5fixlist.nsf/5c087391999d06e7852569280062619d/258394eaa824f2c08525708a004209d3?OpenDocument http://www-10.lotus.com/ldd/r5fixlist.nsf/e7dbb5aee9a94c56852570c90056a95d/040482aeb1416bb7852570e4001badd6?OpenDocument http://www-10.lotus.com/ldd/r5fixlist.nsf/e7dbb5aee9a94c56852570c90056a95d/2bb4f466a9e986ae852570e4001babbb?OpenDocument http://www-10.lotus.com/ldd/r5fixlist.nsf/e7dbb5aee9a94c56852570c90056a95d/4118a1f266afb26c852570e4001baf5e?OpenDocument http://www-10.lotus.com/ldd/r5fixlist.nsf/e7dbb5aee9a94c56852570c90056a95d/5f166a44ee743b2c852570e4001baf31?OpenDocument http://www-10.lotus.com/ldd/r5fixlist.nsf/e7dbb5aee9a94c56852570c90056a95d/ad0dd14aa109f96b852570e4001bb08c?OpenDocument http://www-10.lotus.com/ldd/r5fixlist.nsf/e7dbb5aee9a94c56852570c90056a95d/ced5f873baea4e8b852570e4001baa6d?OpenDocument https://exchange.xforce.ibmcloud.com/vulnerabilities/24212 https://exchange.xforce.ibmcloud.com/vulnerabilities/24213 https://exchange.xforce.ibmcloud.com/vulnerabilities/24214 https://exchange.xforce.ibmcloud.com/vulnerabilities/24215 https://exchange.xforce.ibmcloud.com/vulnerabilities/24216 https://exchange.xforce.ibmcloud.com/vulnerabilities/24217