Lotus Domino SMTP server 4.63 through 5.08 allows remote attackers to cause a denial of service (CPU consumption) by forging an email message with the sender as bounce@[127.0.0.1] (localhost), which causes Domino to enter a mail loop.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Domino | Lotus | 4.6.1 (including) | 4.6.1 (including) |
| Domino | Lotus | 4.6.3 (including) | 4.6.3 (including) |
| Domino | Lotus | 4.6.4 (including) | 4.6.4 (including) |
| Domino | Lotus | 5.0.1 (including) | 5.0.1 (including) |
| Domino | Lotus | 5.0.2 (including) | 5.0.2 (including) |
| Domino | Lotus | 5.0.3 (including) | 5.0.3 (including) |
| Domino | Lotus | 5.0.4 (including) | 5.0.4 (including) |
| Domino | Lotus | 5.0.5 (including) | 5.0.5 (including) |
| Domino | Lotus | 5.0.6 (including) | 5.0.6 (including) |
| Domino | Lotus | 5.0.7 (including) | 5.0.7 (including) |
| Domino | Lotus | 5.0.8 (including) | 5.0.8 (including) |