What is the severity of CVE-2003-0122?

CVE-2003-0122 is considered a critical vulnerability due to its potential to allow remote code execution.

How do I fix CVE-2003-0122?

To fix CVE-2003-0122, upgrade your IBM Lotus Notes or Domino server to the latest version, ideally 5.0.11 or later.

What software is affected by CVE-2003-0122?

CVE-2003-0122 affects multiple versions of IBM Lotus Notes and IBM Lotus Domino prior to version 5.0.11.

What kind of attack can leverage CVE-2003-0122?

An attacker can exploit CVE-2003-0122 by sending specially crafted requests during NotesRPC authentication to execute arbitrary code.

Is CVE-2003-0122 still a concern for current users?

While CVE-2003-0122 primarily impacts older software versions, organizations still using affected versions should prioritize patching to mitigate risk.

Vulnerability/
CVE-2003-0122

medium

CWE

NVD-CWE-Other 119

18/3/2003

1/9/2004

8/8/2024

CVE-2003-0122: Buffer Overflow

First published: Tue Mar 18 2003(Updated: )

Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Ibm Lotus Notes Client	=5.0.4
Ibm Lotus Notes Client	=5.0.11
IBM Lotus Domino	=5.0.4
IBM Lotus Domino	=5.0.2
Ibm Lotus Notes Client	=r5
IBM Lotus Domino	=4.6.4
Ibm Lotus Notes Client	=5.0.5
Ibm Lotus Notes Client	=5.0
Ibm Lotus Notes Client	=5.0.2
IBM Lotus Domino	=5.0.5
IBM Lotus Domino	=5.0.6
IBM Lotus Domino	=5.0.6a
Ibm Lotus Notes Client	=5.0.10
IBM Lotus Domino	=4.6.1
IBM Lotus Domino	=5.0.8a
IBM Lotus Domino	=5.0.9a
Ibm Lotus Notes Client	=5.0.9a
IBM Lotus Domino	=4.6.3
IBM Lotus Domino	=5.0
IBM Lotus Domino	=5.0.1
IBM Lotus Domino	=5.0.11
Ibm Lotus Notes Client	=5.0.1
IBM Lotus Domino	=5.0.3
IBM Lotus Domino	=5.0.4a
IBM Lotus Domino	=5.0.8
IBM Lotus Domino	=5.0.9
Ibm Lotus Notes Client	=5.0.3
IBM Lotus Domino	=5.0.7a
IBM Lotus Domino	=5.0.10

Remedy

http://www.securityfocus.com/bid/7037

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2003-0122?
CVE-2003-0122 is considered a critical vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2003-0122?
To fix CVE-2003-0122, upgrade your IBM Lotus Notes or Domino server to the latest version, ideally 5.0.11 or later.
What software is affected by CVE-2003-0122?
CVE-2003-0122 affects multiple versions of IBM Lotus Notes and IBM Lotus Domino prior to version 5.0.11.
What kind of attack can leverage CVE-2003-0122?
An attacker can exploit CVE-2003-0122 by sending specially crafted requests during NotesRPC authentication to execute arbitrary code.
Is CVE-2003-0122 still a concern for current users?
While CVE-2003-0122 primarily impacts older software versions, organizations still using affected versions should prioritize patching to mitigate risk.

collector/nvd-historical
collector/nvd-index
agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/references
agent/author
agent/remedy
agent/severity
agent/last-modified-date
agent/weakness
agent/description
agent/event
agent/tags
agent/source
vendor/ibm
canonical/ibm lotus notes client
version/ibm lotus notes client/5.0.4
version/ibm lotus notes client/5.0.11
canonical/ibm lotus domino
version/ibm lotus domino/5.0.4
version/ibm lotus domino/5.0.2
version/ibm lotus notes client/r5
version/ibm lotus domino/4.6.4
version/ibm lotus notes client/5.0.5
version/ibm lotus notes client/5.0
version/ibm lotus notes client/5.0.2
version/ibm lotus domino/5.0.5
version/ibm lotus domino/5.0.6
version/ibm lotus domino/5.0.6a
version/ibm lotus notes client/5.0.10
version/ibm lotus domino/4.6.1
version/ibm lotus domino/5.0.8a
version/ibm lotus domino/5.0.9a
version/ibm lotus notes client/5.0.9a
version/ibm lotus domino/4.6.3
version/ibm lotus domino/5.0
version/ibm lotus domino/5.0.1
version/ibm lotus domino/5.0.11
version/ibm lotus notes client/5.0.1
version/ibm lotus domino/5.0.3
version/ibm lotus domino/5.0.4a
version/ibm lotus domino/5.0.8
version/ibm lotus domino/5.0.9
version/ibm lotus notes client/5.0.3
version/ibm lotus domino/5.0.7a
version/ibm lotus domino/5.0.10

Frequently Asked Questions

What is the severity of CVE-2003-0122?
CVE-2003-0122 is considered a critical vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2003-0122?
To fix CVE-2003-0122, upgrade your IBM Lotus Notes or Domino server to the latest version, ideally 5.0.11 or later.
What software is affected by CVE-2003-0122?
CVE-2003-0122 affects multiple versions of IBM Lotus Notes and IBM Lotus Domino prior to version 5.0.11.
What kind of attack can leverage CVE-2003-0122?
An attacker can exploit CVE-2003-0122 by sending specially crafted requests during NotesRPC authentication to execute arbitrary code.
Is CVE-2003-0122 still a concern for current users?
While CVE-2003-0122 primarily impacts older software versions, organizations still using affected versions should prioritize patching to mitigate risk.

CVE-2003-0122: Buffer Overflow

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2003-0122?

How do I fix CVE-2003-0122?

What software is affected by CVE-2003-0122?

What kind of attack can leverage CVE-2003-0122?

Is CVE-2003-0122 still a concern for current users?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2003-0122?

How do I fix CVE-2003-0122?

What software is affected by CVE-2003-0122?

What kind of attack can leverage CVE-2003-0122?

Is CVE-2003-0122 still a concern for current users?