source: http://www.securityfocus.com/bid/13045/info A remote denial of service vulnerability affects IBM Lotus Domino Server web service. This issue is due to a failure of the application to properly handle malformed network requests. IBM has denied that this issue is a vulnerability and they have reported conflicting details regarding it. Please see the referenced IBM technote for more information. An attacker may leverage this issue to crash the nHTTP.EXE web service, denying service to legitimate users. GET /cgi-bin/[xxx] HTTP/1.0 Host: 10.10.0.100 Where [xxx] represents a long string (~330) of UNICODE decimal value 430 characters.
Related ExploitsTrying to match CVEs (1): CVE-2005-0986
Trying to match OSVDBs (1): 15319
Other Possible E-DB Search Terms: IBM Lotus Domino Server 6.5.1 Web Service, IBM Lotus Domino Server
|2004-06-30||IBM Lotus Domino Server 6 - Web Access Remote Denial of Service||Andreas Klein|
|2007-03-29||IBM Lotus Domino Server 6.5 - 'Username' Remote Denial of Service||Winny Thomas|
|2007-03-31||IBM Lotus Domino Server 6.5 - Remote Overflow||muts|
|2011-11-30||IBM Lotus Domino Server Controller - Authentication Bypass||Alexey Sintsov|