High severity8.8NVD Advisory· Published Apr 25, 2017· Updated May 13, 2026

CVE-2017-1274

Description

IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated attacker to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749.

Affected products

IBM/Domino5 versions
cpe:2.3:a:ibm:domino:8.5.3:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:ibm:domino:8.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:domino:8.5.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:domino:9.0.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:domino:9.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:domino:9.0.1.8:*:*:*:*:*:*:*
IBM/Dominov5
Range: 8.5.3.5, 8.5.3.6, 9.0.1, 8.5, 9.0, 8.5.1, 8.5.2, 8.5.3, 9.0.1.1, 8.0.2, 8.0, 8.0.1, 8.5.1.5, 8.5.2.4, 9.0.1.2, 8.5.0.1, 9.0.1.3, 8.5.1.4, 9.0.1.4, 9.0.1.5, 8.5.1.1, 9.0.1.6, 9.0.1.7, 9.0.1.8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ibm.com/support/docview.wssnvdVendor Advisory
www.securityfocus.com/bid/98019nvdThird Party AdvisoryVDB Entry
packetstormsecurity.com/files/152786/Lotus-Domino-8.5.3-EXAMINE-Stack-Buffer-Overflow.htmlnvd
www.securityfocus.com/bid/97910nvd
www.securitytracker.com/id/1038358nvd
www.kb.cert.org/vuls/id/676632nvd

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.014
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000