CVE-2000-1046

Lotus Domino <5.0.2c - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1046. PoCs published by smiler.

AI-analyzed exploit summary This Perl script exploits a buffer overflow vulnerability in Lotus Domino Server's ESMTP service by sending oversized arguments (4KB+) to commands like 'rcpt to', 'mail from', and 'helo', causing a denial-of-service (DoS) condition. The exploit uses the Net::Telnet module to craft malicious SMTP commands and test multiple attack vectors.

Description

Multiple buffer overflows in the ESMTP service of Lotus Domino 5.0.2c and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via long (1) "RCPT TO," (2) "SAML FROM," or (3) "SOML FROM" commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by smiler · perlremotemultiple

https://www.exploit-db.com/exploits/19944

View Code ZIP pw:eip

This Perl script exploits a buffer overflow vulnerability in Lotus Domino Server's ESMTP service by sending oversized arguments (4KB+) to commands like 'rcpt to', 'mail from', and 'helo', causing a denial-of-service (DoS) condition. The exploit uses the Net::Telnet module to craft malicious SMTP commands and test multiple attack vectors.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Lotus Domino Enterprise Server 5.0.1/5.0.2/5.0.3, Mail Server 5.0.1/5.0.2/5.0.3

No auth needed

Prerequisites: Network access to the target SMTP port (25) · Perl with Net::Telnet module installed

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-09/0093.html

Scores

EPSS 0.0610

EPSS Percentile 92.5%

Details

Status published

Products (2)

lotus/domino 5.0.2a

lotus/domino 5.0.2c

Published Dec 11, 2000

Tracked Since Feb 18, 2026