Information relating to installing and maintaining IBM/Lotus Notes/Domino R6/R7/R8 and R9.
IBM has announced a remote code execution vulnerability in how IBM Domino processes GIF files. This would enable a remoter attacker to execute code or even crash a Domino server that has not been patched.
These are the IBM Domino version that are affected:
IBM has released the fixes for these versions as Interim Fix 2 for the 9.0.1 FP3 codestream and Interim Fix 6 for the 8.5.3 FP6 codestream. Anything prior to the above versions will not offer a fix and servers will need to be updated to the latest versions to apply the Interim Fixes.
You can download the 9.0.1 IF2 fix from IBM here and the 8.5.3 IF6 fix from here from those technotes.
How can you customise the IBM Notes R9 Splash Screen?
In IBM/Lotus Domino, you may way to disable the ability to use WebAdmin.
In order to prevent the http task from creating the webadmin.nsf, you need to follow this process:
© 2024 d-PIT Solutions