Skip to main content

IBM Lotus iNotes ActiveX Control and UltraLite Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 2 Mar 2010 5439 Views

RISK: Medium Risk

Multiple vulnerabilitieshave been identified in IBM Lotus iNotes (Domino Web Access), which could be exploited by remote attackers to manipulate data or compromise an affected system.

1. Due to a buffer overflow error in the iNotes ActiveX control.

2. Due to unspecified errors related to UltraLite.

3. Due to errors related to "Get Filter" and "Referer Check", which could allow cross site scripting or request forgery attacks.


Impact

  • Remote Code Execution

System / Technologies affected

  • IBM Lotus iNotes (Domino Web Access) versions 8.0.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier

  • No CVE information is available

Source


Related Link