Summary
| Detail | |||
|---|---|---|---|
| Vendor | Ibm | First view | 2007-12-28 |
| Product | Lotus Notes | Last view | 2018-07-16 |
| Version | 8.0 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:ibm:lotus_notes | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7 | 2018-07-16 | CVE-2013-0522 | The Notes Client Single Logon feature in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3, and 9.0 on Windows allows local users to discover passwords via vectors involving an unspecified operating system communication mechanism for password transmission between Windows and Notes. IBM X-Force ID: 82531. |
| 7.2 | 2013-06-21 | CVE-2013-0536 | ntmulti.exe in the Multi User Profile Cleanup service in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3 before FP5, and 9.0 before IF2 allows local users to gain privileges via vectors that arrange for code to be executed during the next login session of a different user, aka SPR PJOK959J24. |
| 4.3 | 2013-05-01 | CVE-2013-0538 | Cross-site scripting (XSS) vulnerability in IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element in an HTML e-mail message, aka SPRs JMOY95BLM6 and JMOY95BN49. |
| 5.8 | 2013-05-01 | CVE-2013-0127 | IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 does not block APPLET elements in HTML e-mail, which allows remote attackers to bypass intended restrictions on Java code execution and X-Confirm-Reading-To functionality via a crafted message, aka SPRs JMOY95BLM6 and JMOY95BN49. |
| 9.3 | 2013-01-10 | CVE-2012-4823 | Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method." |
| 9.3 | 2013-01-10 | CVE-2012-4822 | Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via vectors related to "insecure use [of] multiple methods in the java.lang.class class." |
| 9.3 | 2013-01-10 | CVE-2012-4821 | Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via "insecure use" of the (1) java.lang.Class getDeclaredMethods or nd (2) java.lang.reflect.AccessibleObject setAccessible() methods. |
| 9.3 | 2013-01-10 | CVE-2012-4820 | Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to "insecure use of the java.lang.reflect.Method invoke() method." |
| 9.3 | 2012-06-20 | CVE-2012-2174 | The URL handler in IBM Lotus Notes 8.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a crafted notes:// URL. |
| 9.3 | 2011-05-31 | CVE-2011-1512 | Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR. |
| 9.3 | 2011-05-31 | CVE-2011-1218 | Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information. |
| 9.3 | 2011-05-31 | CVE-2011-1217 | Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .prz attachment. NOTE: some of these details are obtained from third party information. |
| 9.3 | 2011-05-31 | CVE-2011-1216 | Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7. |
| 9.3 | 2011-05-31 | CVE-2011-1215 | Stack-based buffer overflow in mw8sr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a Microsoft Office document attachment, aka SPR PRAD8823ND. |
| 9.3 | 2011-05-31 | CVE-2011-1214 | Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ. |
| 9.3 | 2011-05-31 | CVE-2011-1213 | Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted header in a .lzh attachment that triggers a stack-based buffer overflow, aka SPR PRAD88MJ2W. |
| 9.3 | 2011-02-08 | CVE-2011-0912 | Argument injection vulnerability in IBM Lotus Notes 8.0.x before 8.0.2 FP6 and 8.5.x before 8.5.1 FP5 allows remote attackers to execute arbitrary code via a cai:// URL containing a --launcher.library option that specifies a UNC share pathname for a DLL file, aka SPR PRAD82YJW2. |
| 2.1 | 2010-04-20 | CVE-2010-1487 | IBM Lotus Notes 7.0, 8.0, and 8.5 stores administrative credentials in cleartext in SURunAs.exe, which allows local users to obtain sensitive information by examining this file, aka SPR JSTN837SEG. |
| 9.3 | 2009-09-01 | CVE-2009-3037 | Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment. |
| 9.3 | 2009-03-18 | CVE-2008-4564 | Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a crafted Word Perfect Document (WPD) file. |
| 9.3 | 2008-04-10 | CVE-2008-1718 | Buffer overflow in mimesr.dll in Autonomy (formerly Verity) KeyView, as used in IBM Lotus Notes before 8.0, might allow user-assisted remote attackers to execute arbitrary code via an e-mail message with a crafted Text mail (MIME) attachment. |
| 9.3 | 2008-04-10 | CVE-2007-5406 | kpagrdr.dll 2.0.0.2 and 10.3.0.0 in the Applix Presents reader in Autonomy (formerly Verity) KeyView, as used by IBM Lotus Notes, Symantec Mail Security, and activePDF DocConverter, does not properly parse long tokens, which allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted .ag file. |
| 9.3 | 2008-03-08 | CVE-2007-6706 | Unspecified vulnerability in nlnotes.dll in the client in IBM Lotus Notes 6.5, 7.0.x before 7.0.2 CCH or 7.0.3, and possibly 8.0 allows remote attackers to execute arbitrary code via crafted text in an e-mail message sent over SMTP. |
| 4.3 | 2008-02-20 | CVE-2008-0862 | IBM Lotus Notes 6.0, 6.5, 7.0, and 8.0 signs an unsigned applet when a user forwards an email message to another user, which allows user-assisted remote attackers to bypass Execution Control List (ECL) protection. |
| 6.9 | 2007-12-28 | CVE-2007-6594 | IBM Lotus Notes 8 for Linux before 8.0.1 uses (1) unspecified weak permissions for the installation kit obtained through a Notes 8 download and (2) 0777 permissions for the installdata file that is created by setup.sh, which allows local users to gain privileges via a Trojan horse file. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 47% (10) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 19% (4) | CWE-264 | Permissions, Privileges, and Access Controls |
| 9% (2) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 4% (1) | CWE-255 | Credentials Management |
| 4% (1) | CWE-200 | Information Exposure |
| 4% (1) | CWE-189 | Numeric Errors |
| 4% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 4% (1) | CWE-20 | Improper Input Validation |
SAINT Exploits
| Description | Link |
|---|---|
| Lotus Notes Lotus 1-2-3 file viewer buffer overflow | More info here |
| IBM Lotus Notes LZH Attachment Viewer Stack Buffer Overflow | More info here |
| IBM Lotus Notes URL Handler Command Execution | More info here |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 72711 | IBM Lotus Notes Autonomy KeyView kvarcve.dll zip Attachment Parsing Overflow |
| 72710 | IBM Lotus Notes Autonomy KeyView kpprzrdr.dll prz Attachment Parsing Overflow |
| 72709 | IBM Lotus Notes Autonomy KeyView assr.dll Tag Data Parsing Overflow |
| 72708 | IBM Lotus Notes Autonomy KeyView mw8sr.dll Link Parsing Overflow |
| 72707 | IBM Lotus Notes Autonomy KeyView rtfsr.dll Link Parsing Overflow |
| 72706 | IBM Lotus Notes Autonomy KeyView lzhsr.dll Underflow Header Parsing Overflow |
| 72705 | IBM Lotus Notes Autonomy KeyView xlssr.dll Biff Record Parsing Overflow |
| 70841 | IBM Lotus Notes cai URI Handler --launcher.library Arbitrary Code Execution |
| 63856 | IBM Lotus Notes SURunAs.exe Cleartext Credential Local Disclosure |
| 57334 | Autonomy Keyview XLS Viewer (xlssr.dll) XLS File SST Record Handling Overflow |
| 52713 | Autonomy KeyView SDK wp6sr.dll Word Perfect Document Handling Overflow |
| 44439 | Autonomy Keyview for IBM Lotus Notes mimesr.dll Crafted MIME Attachment Overflow |
| 44195 | Autonomy Keyview Multiple Products Applix Graphics Reader (kpagrdr.dll) Toke... |
| 42008 | IBM Lotus Notes Java Applet Signature Execution Control List (ECL) Security B... |
| 40956 | IBM Lotus Notes nlnotes.dll SMTP Message Handling Remote Code Execution |
| 40934 | IBM Lotus Notes for Linux setup.sh installdata Permission Weakness Local Priv... |
| 40933 | IBM Lotus Notes for Linux Downloaded Installation Kit Unspecified Permission ... |
| 40796 | Autonomy Keyview SDK l123sr.dll Worksheet File (WKS) Handling Overflows |
OpenVAS Exploits
| id | Description |
|---|---|
| 2011-06-07 | Name : IBM Lotus Notes File Viewers Multiple BOF Vulnerabilities (Win) File : nvt/gb_ibm_lotus_notes_mult_bof_vuln_win.nasl |
| 2011-03-25 | Name : IBM Lotus Notes 'cai' URI and iCal Remote Code Execution Vulnerabilities (Win) File : nvt/secpod_ibm_lotus_notes_code_exec_vuln_win.nasl |
| 2009-03-20 | Name : Ubuntu USN-735-1 (gst-plugins-base0.10) File : nvt/ubuntu_735_1.nasl |
| 2009-03-20 | Name : Ubuntu USN-736-1 (gst-plugins-good0.10) File : nvt/ubuntu_736_1.nasl |
| 2009-03-20 | Name : Ubuntu USN-737-1 (libsoup) File : nvt/ubuntu_737_1.nasl |
| 2009-03-20 | Name : Ubuntu USN-739-1 (amarok) File : nvt/ubuntu_739_1.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2009-B-0042 | Autonomy KeyView Buffer Overflow Vulnerability in Symantec Mail Security and ... Severity: Category II - VMSKEY: V0019906 |
| 2008-B-0039 | Symantec Mail Security Buffer Overflow Vulnerabilities Severity: Category I - VMSKEY: V0015964 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-04-02 | IBM Lotus Notes LZH Attachment Viewer buffer overflow attempt RuleID : 49297 - Type : FILE-OTHER - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithPrivilege method call attempt RuleID : 45351 - Type : FILE-JAVA - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithClassLoaders method call attempt RuleID : 45350 - Type : FILE-JAVA - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithPrivilege method call attempt RuleID : 45349 - Type : FILE-JAVA - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithClassLoaders method call attempt RuleID : 45348 - Type : FILE-JAVA - Revision : 2 |
| 2015-07-08 | IBM Lotus Notes WPD attachment handling buffer overflow attempt RuleID : 34632 - Type : SERVER-MAIL - Revision : 2 |
| 2014-01-10 | IBM Lotus Notes LZH Attachment Viewer buffer overflow RuleID : 24209 - Type : FILE-OTHER - Revision : 7 |
| 2014-01-10 | IBM Lotus Notes LZH Attachment Viewer buffer overflow RuleID : 24208 - Type : FILE-OTHER - Revision : 11 |
| 2014-01-10 | IBM Lotus Notes LZH Attachment Viewer buffer overflow RuleID : 24207 - Type : FILE-OTHER - Revision : 11 |
| 2014-01-10 | LZH archive file magic detected RuleID : 24206 - Type : FILE-IDENTIFY - Revision : 15 |
| 2014-01-10 | IBM Lotus Notes URI handler command execution attempt RuleID : 24200 - Type : SERVER-MAIL - Revision : 6 |
| 2014-01-10 | IBM Lotus Notes URI handler command execution attempt RuleID : 24199 - Type : SERVER-MAIL - Revision : 9 |
| 2014-01-10 | IBM Lotus Notes WPD attachment handling buffer overflow attempt RuleID : 17777 - Type : SERVER-MAIL - Revision : 11 |
| 2014-01-10 | Autonomy KeyView SDK Excel file SST parsing integer overflow attempt RuleID : 16458 - Type : WEB-CLIENT - Revision : 4 |
| 2014-01-10 | Microsoft Office Excel SST record remote code execution attempt RuleID : 15541 - Type : FILE-OFFICE - Revision : 19 |
| 2014-01-10 | Lotus 123 file attachment RuleID : 12807 - Type : FILE-IDENTIFY - Revision : 16 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2014-11-08 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2013-1455.nasl - Type: ACT_GATHER_INFO |
| 2014-11-08 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2013-1456.nasl - Type: ACT_GATHER_INFO |
| 2013-07-17 | Name: The remote host has software installed that is affected by multiple buffer ov... File: symantec_sms_smtp_sym_08-010.nasl - Type: ACT_GATHER_INFO |
| 2013-07-17 | Name: The remote host has software installed that is affected by multiple buffer ov... File: symantec_sms_sym_08-010.nasl - Type: ACT_GATHER_INFO |
| 2013-06-20 | Name: The remote host has software installed that is affected by a code execution v... File: lotus_notes_swg21633827.nasl - Type: ACT_GATHER_INFO |
| 2013-05-31 | Name: The version of IBM Notes installed on the remote Windows host is affected by ... File: lotus_notes_single_signon.nasl - Type: ACT_GATHER_INFO |
| 2013-05-28 | Name: The version of IBM Notes installed on the remote Windows host accepts Java ap... File: lotus_notes_accepts_java.nasl - Type: ACT_GATHER_INFO |
| 2013-01-24 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1485.nasl - Type: ACT_GATHER_INFO |
| 2012-12-17 | Name: The remote host has software installed that is affected by multiple vulnerabi... File: lotus_notes_8_5_3_fp3.nasl - Type: ACT_GATHER_INFO |
| 2012-11-16 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1465.nasl - Type: ACT_GATHER_INFO |
| 2012-11-16 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1466.nasl - Type: ACT_GATHER_INFO |
| 2012-11-16 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1467.nasl - Type: ACT_GATHER_INFO |
| 2012-08-10 | Name: The remote host has software installed that is affected by a code execution v... File: lotus_notes_8_5_3_fp2.nasl - Type: ACT_GATHER_INFO |
| 2011-10-28 | Name: The remote Windows host has a mail security application installed that is aff... File: symantec_sym_11-013.nasl - Type: ACT_GATHER_INFO |
| 2011-05-31 | Name: The remote Windows host has an application that is affected by multiple buffe... File: notes_keyview_overflows2.nasl - Type: ACT_GATHER_INFO |
| 2009-09-04 | Name: An email security application running on the remote Windows host is affected ... File: sms_smtp_keyview_overflow.nasl - Type: ACT_GATHER_INFO |
