IBM.Domino.Server.IMAP.EXAMINE.Command.Stack.Buffer.Overflow
Description
This indicates an attack attempt to exploit a Buffer Overflow vulnerability in IBM Domino that was disclosed by Shadow Broker as EMPHASISMINE exploit.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application.
Affected Products
IBM Domino 9.0.1 through 9.0.1 Feature Pack 8 Interim Fix 1
IBM Domino 9.0 through 9.0 Interim Fix 7
IBM Domino 8.5.3 through 8.5.3 Fix Pack 6 Interim Fix 16
IBM Domino 8.5.2 through 8.5.2 Fix Pack 4
IBM Domino 8.5.1 through 8.5.1 Fix Pack 5
Impact
System Compromise: Remote attackers can gain control of vulnerable systems
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www-01.ibm.com/support/docview.wss?uid=swg22002280
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |