CVE-2011-0913

Name of the Vulnerable Software and Affected Versions IBM Lotus Domino versions prior to 8.5.3

Description The issue is related to a stack-based buffer overflow in the DIIOP implementation, specifically in the ndiiop.exe component. This occurs when handling a GIOP getEnvironmentString request, which is related to the local variable cache. The estimated number of potentially affected devices worldwide is not specified. There is no information provided about real-world incidents where this issue was exploited.

Recommendations For versions prior to 8.5.3, update to version 8.5.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the DIIOP implementation until a patch is applied. Avoid using the getEnvironmentString request in the affected GIOP endpoint until the issue is resolved.