CVE-2011-0914

Name of the Vulnerable Software and Affected Versions IBM Lotus Domino versions prior to 8.5.3

Description The issue is related to an integer signedness error in the DIIOP implementation, specifically in the ndiiop.exe component. This error can be exploited by remote attackers via a GIOP client request, leading to a heap-based buffer overflow and potentially allowing the execution of arbitrary code.

Recommendations For versions prior to 8.5.3, update to version 8.5.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the DIIOP implementation to minimize the risk of exploitation.