IBM Lotus Notes/Domino SetHTTPHeader function code injection
| lotus-sethttpheader-injection (20045) |  Medium Risk |
Description:
IBM Lotus Notes and Lotus Domino versions could allow a remote attacker to inject arbitrary code caused by a vulnerability in the @SetHTTPheader function. A remote attacker, with the ability to install a rogue application, could inject arbitrary code into the header to cause an HTTP response splitting or to poison the browser/proxy cache.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of Lotus Notes/Domino (6.0.5 or 6.5.4 or later), available from the IBM Support Services Web page. See References.
References:
- IBM Support Services Web page: Upgrade Central: Planning Your Upgrade to Lotus Notes/Domino 6.0.5/6.5.4.
- IBM Technote (FAQ): CERT VU#699798 - Lotus Domino allows HTTP header injection.
- CVE-2005-1405: HTTP response splitting vulnerability in the @SetHTTPHeader function in Lotus Domino 6.5.x before 6.5.4 and 6.0.x before 6.0.5 allows attackers to poison the web cache via malicious applications.
- SA14879: Lotus Notes/Domino Multiple Vulnerabilities
- SECTRACK ID: 1013839: Lotus Domino @SetHTTPHeader Permits HTTP Response Splitting Attacks
Platforms Affected:
- IBM Lotus Notes 6.0
- IBM Lotus Notes 6.0.1
- IBM Lotus Notes 6.0.2
- IBM Lotus Notes 6.0.3
- IBM Lotus Notes 6.0.4
- IBM Lotus Notes 6.5
- IBM Lotus Notes 6.5.1
- IBM Lotus Notes 6.5.2
- IBM Lotus Notes 6.5.3
Reported:
Apr 08, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net