cpe:/a:ibm:lotus_domino_server:6.0.3 cpe:/a:ibm:lotus_domino_server:6.5.1 CVE-2005-0986 2005-05-02T00:00:00.000-04:00 2011-03-07T21:20:55.250-05:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2005-06-13T20:49:00.000-04:00 SECUNIA 14858 IDEFENSE 20050406 IBM Lotus Domino Server Web Service DoS Vulnerability VUPEN ADV-2005-0322 MISC http://news.zdnet.co.uk/software/applications/0,39020384,39194293,00.htm MISC http://www-1.ibm.com/support/docview.wss?uid=swg21202446 NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, 6.0.3, and possibly other versions allows remote attackers to cause a denial of service (deep recursion and nHTTP.exe process crash) via a long GET request containing UNICODE decimal value 430 characters, which causes the stack to be exhausted. NOTE: IBM has reported that it is unable to replicate this issue.