Lotus Domino SMTP Meeting Request Remote Denial of Service Vulnerability

Lotus Domino SMTP Meeting Request Remote Denial of Service Vulnerability

Lotus Domino is prone to a remote denial-of-service vulnerability because it fails to properly handle malformed email.

This issue allows remote attackers to consume excessive CPU resources on affected computers and to block all email delivery until administrators manually remove the malicious message from the mail queue. This will deny further email service to legitimate users.

Restarting the affected service will not clear this problem, because the offending message will remain in the mail queue.

Lotus Domino versions prior to 6.5.4 FP1, 6.5.5, and 7.0 are vulnerable to this issue.