News

CERT Sorts Out Recent Barrage of Lotus Vulnerabilities

CERT on Wednesday moved to help users make sense of a flurry of recent vulnerability notices involving Lotus Notes and Domino on several platforms, including Windows.

"Multiple reporters, the close timing and some ambiguity caused confusion about what releases are vulnerable. We are issuing this advisory to help clarify the details of the vulnerabilities, the versions affected, and the patches that resolve these issues," CERT noted in its advisory.

Confusion stemmed from a barrage of advisories from NGS Software and Rapid7, Inc. In February, NGS reported five vulnerabilities in Notes and Domino. In March, Rapid7 highlighted three more flaws. According to CERT, the impacts ranged from denial of service to data corruption and execution of arbitrary code.

CERT noted that all but one of the vulnerabilities are resolved by upgrading to versions 5.0.12 and 6.0.1 of Lotus Domino. The one remaining vulnerability can be patched.

The CERT advisory is available at www.cert.org/advisories/CA-2003-11.html.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.

Featured

  • How To Configure Windows 10 for Intel Optane Memory

    Intel's Optane memory technology can significantly improve the performance of your Windows 10 system -- provided you enable it correctly. A single mistake can render the system unbootable. Here's how to do it the right way.

  • Microsoft and SAP Enhance Partnership with Teams Integration

    Microsoft and SAP this week described continuing partnership efforts on Microsoft Azure, while also planning a Microsoft Teams integration with SAP's enterprise resource planning product and other solutions.

  • Blue Squares Graphic

    Microsoft Previews Azure IoT Edge for Linux on Windows

    Microsoft announced a preview of Azure IoT Edge for Linux on Windows, which lets organizations tap Linux virtual machine processes that also work with Windows- and Azure-based processes and services.

  • How To Automate Tasks in Azure SQL Database

    Knowing how to automate tasks in the cloud will make you a more productive DBA. Here are the key concepts to understand about cloud scripting and a rundown of the best tools for automating code in Azure.

comments powered by Disqus