What is the severity of CVE-2011-0914?

CVE-2011-0914 has a severity rating that indicates it could allow remote code execution through a heap-based buffer overflow.

How do I fix CVE-2011-0914?

To fix CVE-2011-0914, update your IBM Lotus Domino server to a version that is not vulnerable, preferably version 8.5.3 or later.

What versions of IBM Lotus Domino are affected by CVE-2011-0914?

CVE-2011-0914 affects multiple versions of IBM Lotus Domino including 5.0, 6.0, 7.0, and all versions prior to 8.5.3.

What type of vulnerability is CVE-2011-0914?

CVE-2011-0914 is classified as a heap-based buffer overflow vulnerability due to an integer signedness error.

Can CVE-2011-0914 be exploited remotely?

Yes, CVE-2011-0914 can be exploited remotely by attackers using specially crafted GIOP client requests.

Vulnerability/
CVE-2011-0914

critical

CWE

189 119

8/2/2011

6/8/2024

CVE-2011-0914: Buffer Overflow

First published: Tue Feb 08 2011(Updated: )

Integer signedness error in ndiiop.exe in the DIIOP implementation in the server in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via a GIOP client request, leading to a heap-based buffer overflow.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
IBM Lotus Domino R5	=8.0.2.4
IBM Lotus Domino R5	=7.0.2.2
IBM Lotus Domino R5	=6.0.5
IBM Lotus Domino R5	=5.0.4
IBM Lotus Domino R5	=5.0.2
IBM Lotus Domino R5	=7.0.4
IBM Lotus Domino R5	=6.5.2
IBM Lotus Domino R5	=6.5.4.1
IBM Lotus Domino R5	=8.5.1.1
IBM Lotus Domino R5	=6.0
IBM Lotus Domino R5	=8.5.1.4
IBM Lotus Domino R5	=8.0.2
IBM Lotus Domino R5	=7.0.4.2
IBM Lotus Domino R5	=7.0.1.1
IBM Lotus Domino R5	=4.6.4
IBM Lotus Domino R5	=6.0.4
IBM Lotus Domino R5	=6.0.2
IBM Lotus Domino R5	=5.0.1
IBM Lotus Domino R5	=5.0.8a
IBM Lotus Domino R5	=5.0.3
IBM Lotus Domino R5	=6.5.4
IBM Lotus Domino R5	=7.0.2.1
IBM Lotus Domino R5	=6.0.2_cf2
IBM Lotus Domino R5	=5.0.9
IBM Lotus Domino R5	=6.0.2.2
IBM Lotus Domino R5	=8.0.2.3
IBM Lotus Domino R5	=8.5.2.1
IBM Lotus Domino R5	=6.0.1.1
IBM Lotus Domino R5	=7.0.2.3
IBM Lotus Domino R5	=7.0.4.1
IBM Lotus Domino R5	<=8.5.2.2
IBM Lotus Domino R5	=6.5
IBM Lotus Domino R5	=6.5.2.1
IBM Lotus Domino R5	=8.5.1
IBM Lotus Domino R5	=6.5.4.3
IBM Lotus Domino R5	=4.6.1
IBM Lotus Domino R5	=5.0.4a
IBM Lotus Domino R5	=6.5.3.1
IBM Lotus Domino R5	=7.0.3
IBM Lotus Domino R5	=6.5.1
IBM Lotus Domino R5	=6.0.1.2
IBM Lotus Domino R5	=5.0.11
IBM Lotus Domino R5	=5.0.7
IBM Lotus Domino R5	=7.0
IBM Lotus Domino R5	=8.0.2.1
IBM Lotus Domino R5	=8.0.2.6
IBM Lotus Domino R5	=8.5.1.2
IBM Lotus Domino R5	=6.5.0
IBM Lotus Domino R5	=6.5.6
IBM Lotus Domino R5	=6.0.2.1
IBM Lotus Domino R5	=5.0.6
IBM Lotus Domino R5	=5.0.6a
IBM Lotus Domino R5	=5.0
IBM Lotus Domino R5	=4.6.3
IBM Lotus Domino R5	=6.0.1
IBM Lotus Domino R5	=6.5.4.2
IBM Lotus Domino R5	=6.5.3
IBM Lotus Domino R5	=8.0.2.5
IBM Lotus Domino R5	=6.0.3
IBM Lotus Domino R5	=6.0.1.3
IBM Lotus Domino R5	=8.5.2
IBM Lotus Domino R5	=8.0.2.2
IBM Lotus Domino R5	=7.0.2
IBM Lotus Domino R5	=6.5.5
IBM Lotus Domino R5	=5.0.9a
IBM Lotus Domino R5	=5.0.5
IBM Lotus Domino R5	=8.5.1.5
IBM Lotus Domino R5	=7.0.1
IBM Lotus Domino R5	=5.0.8
IBM Lotus Domino R5	=7.0.3.1
IBM Lotus Domino R5	=8.0.1
IBM Lotus Domino R5	=5.0.7a
IBM Lotus Domino R5	=5.0.10
IBM Lotus Domino R5	=8.5.1.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-0914?
CVE-2011-0914 has a severity rating that indicates it could allow remote code execution through a heap-based buffer overflow.
How do I fix CVE-2011-0914?
To fix CVE-2011-0914, update your IBM Lotus Domino server to a version that is not vulnerable, preferably version 8.5.3 or later.
What versions of IBM Lotus Domino are affected by CVE-2011-0914?
CVE-2011-0914 affects multiple versions of IBM Lotus Domino including 5.0, 6.0, 7.0, and all versions prior to 8.5.3.
What type of vulnerability is CVE-2011-0914?
CVE-2011-0914 is classified as a heap-based buffer overflow vulnerability due to an integer signedness error.
Can CVE-2011-0914 be exploited remotely?
Yes, CVE-2011-0914 can be exploited remotely by attackers using specially crafted GIOP client requests.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/author
agent/severity
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/ibm
canonical/ibm lotus domino
version/ibm lotus domino/8.5.2.2
version/ibm lotus domino/4.6.1
version/ibm lotus domino/4.6.3
version/ibm lotus domino/4.6.4
version/ibm lotus domino/5.0
version/ibm lotus domino/5.0.1
version/ibm lotus domino/5.0.2
version/ibm lotus domino/5.0.3
version/ibm lotus domino/5.0.4
version/ibm lotus domino/5.0.4a
version/ibm lotus domino/5.0.5
version/ibm lotus domino/5.0.6
version/ibm lotus domino/5.0.6a
version/ibm lotus domino/5.0.7
version/ibm lotus domino/5.0.7a
version/ibm lotus domino/5.0.8
version/ibm lotus domino/5.0.8a
version/ibm lotus domino/5.0.9
version/ibm lotus domino/5.0.9a
version/ibm lotus domino/5.0.10
version/ibm lotus domino/5.0.11
version/ibm lotus domino/6.0
version/ibm lotus domino/6.0.1
version/ibm lotus domino/6.0.1.1
version/ibm lotus domino/6.0.1.2
version/ibm lotus domino/6.0.1.3
version/ibm lotus domino/6.0.2
version/ibm lotus domino/6.0.2.1
version/ibm lotus domino/6.0.2.2
version/ibm lotus domino/6.0.2_cf2
version/ibm lotus domino/6.0.3
version/ibm lotus domino/6.0.4
version/ibm lotus domino/6.0.5
version/ibm lotus domino/6.5
version/ibm lotus domino/6.5.0
version/ibm lotus domino/6.5.1
version/ibm lotus domino/6.5.2
version/ibm lotus domino/6.5.2.1
version/ibm lotus domino/6.5.3
version/ibm lotus domino/6.5.3.1
version/ibm lotus domino/6.5.4
version/ibm lotus domino/6.5.4.1
version/ibm lotus domino/6.5.4.2
version/ibm lotus domino/6.5.4.3
version/ibm lotus domino/6.5.5
version/ibm lotus domino/6.5.6
version/ibm lotus domino/7.0
version/ibm lotus domino/7.0.1
version/ibm lotus domino/7.0.1.1
version/ibm lotus domino/7.0.2
version/ibm lotus domino/7.0.2.1
version/ibm lotus domino/7.0.2.2
version/ibm lotus domino/7.0.2.3
version/ibm lotus domino/7.0.3
version/ibm lotus domino/7.0.3.1
version/ibm lotus domino/7.0.4
version/ibm lotus domino/7.0.4.1
version/ibm lotus domino/7.0.4.2
version/ibm lotus domino/8.0.1
version/ibm lotus domino/8.0.2
version/ibm lotus domino/8.0.2.1
version/ibm lotus domino/8.0.2.2
version/ibm lotus domino/8.0.2.3
version/ibm lotus domino/8.0.2.4
version/ibm lotus domino/8.0.2.5
version/ibm lotus domino/8.0.2.6
version/ibm lotus domino/8.5.1
version/ibm lotus domino/8.5.1.1
version/ibm lotus domino/8.5.1.2
version/ibm lotus domino/8.5.1.3
version/ibm lotus domino/8.5.1.4
version/ibm lotus domino/8.5.1.5
version/ibm lotus domino/8.5.2
version/ibm lotus domino/8.5.2.1