IBM Notes / Domino Multiple Vulnerabilities

Last Update Date: 23 Apr 2014 10:14 Release Date: 23 Apr 2014 3898 Views

RISK: High Risk

High Risk

TYPE: Clients - Email Clients

TYPE: Email Clients

Multiple vulnerabilities have been identified in IBM Notes and IBM Domino, which can be exploited by malicious, local users to disclose sensitive information, manipulate certain data, cause a DoS (Denial of Service), and gain escalated privileges, and by malicious people to conduct spoofing attacks, disclose certain sensitive information, manipulate certain data, bypass certain security restrictions, cause a DoS, and compromise a vulnerable system.

  1. An unspecified error can be exploited to disclose information. No further information is currently available.
    This vulnerability is reported in IBM Notes and IBM Domino 32-bit Linux versions 9.0.1 and prior, 9.0.1 Interim Fix 2 and prior, and 8.5.x.
  2. The application bundles a vulnerable version of Java.
    This vulnerability is reported in versions 9.0.1 and prior, 9.0.1 Interim Fix 2 and prior, 8.0.x, and 8.5.x.

Impact

  • Denial of Service
  • Security Restriction Bypass
  • Information Disclosure
  • Spoofing
  • Data Manipulation

System / Technologies affected

  • IBM Domino (formerly IBM Lotus Domino) 9.x
  • IBM Lotus Domino 8.x
  • IBM Lotus Notes 8.x
  • IBM Notes (formerly IBM Lotus Notes) 9.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

OpenSSL Heartbeat Information Disclosure Vulnerability

8 Apr 2014 9073 Views

Next

IBM InfoSphere Streams Java Multiple Vulnerabilities

23 Apr 2014 3734 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY