Malware Injection in IBM’s Lotus Domino Becomes Easy

According to a recent security advisory from MWR InfoSecurity, the Web Access component of IBM's Lotus Domino has several security holes that could allow attackers to inject malicious software into the affected server or to monitor data by employing cross-site scripting (XSS), as reported by Heise-Online on May 21, 2008.

The researchers at MWR InfoSecurity said that the flaw was detected in the code assigned to handle the Hyper-Text Transfer Protocol (HTTP) header information emanating from a surfer's browser. It was discovered that the "Accept Language" field originated from the HTTP header following a request to be processed in the server. This processed data was then replicated onto a stack buffer of a definite length using the "strcpy" utility.

Ther...

» SPAMfighter News - 30-05-2008

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Press Releases - IT Security News

Go back to previous page
Next

Products

SPAMfighter
SLOW-PCfighter
FULL-DISKfighter
DRIVERfighter
PASSWORDfighter
VIRUSfighter
SPYWAREfighter
Anti spam / Anti virus server solutions

About

Company
Contact us
Press room
Support
Blog
Sign up for newsletters

Partnerships

Become a partner
Become a reseller
Find a reseller
Become an affiliate
White Label Software

Social media

Facebook
Twitter
Youtube
LinkedIn
Google+
© SPAMfighter 2003-2013    All rights reserved.    Privacy Statement    Sitemap