IBM Lotus Notes "notes" URI Handler Vulnerability
Last Update Date:
20 Jun 2012 10:25
Release Date:
20 Jun 2012
5032
Views
RISK: Medium Risk
TYPE: Clients - Productivity Products
A vulnerability has been reported in IBM Lotus Notes, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to an error within the "notes" URI handler, which can be exploited to execute arbitrary commands.
Successful exploitation may allow execution of arbitrary code.
Impact
- Remote Code Execution
System / Technologies affected
- IBM Lotus Notes versions 8.0.2, 8.5, 8.5.1, 8.5.2, and 8.5.3
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply interim fix or update to version 8.5.3 Fix Pack 2 when available.
http://www.ibm.com/support/docview.wss?uid=swg21598348
Vulnerability Identifier
Source
Related Link
Share with