Summary
| Detail | |||
|---|---|---|---|
| Vendor | Ibm | First view | 2011-05-31 |
| Product | Lotus Notes | Last view | 2014-04-23 |
| Version | 8.5.2.0 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:ibm:lotus_notes | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 5 | 2014-04-23 | CVE-2014-0892 | IBM Notes and Domino 8.5.x before 8.5.3 FP6 IF3 and 9.x before 9.0.1 FP1 on 32-bit Linux platforms use incorrect gcc options, which makes it easier for remote attackers to execute arbitrary code by leveraging the absence of the NX protection mechanism and placing crafted x86 code on the stack, aka SPR KLYH9GGS9W. |
| 9.3 | 2013-07-18 | CVE-2012-6349 | Buffer overflow in the .mdb parser in Autonomy KeyView IDOL, as used in IBM Notes 8.5.x before 8.5.3 FP4, allows remote attackers to execute arbitrary code via a crafted file, aka SPR KLYH92XL3W. |
| 6.8 | 2013-05-10 | CVE-2013-2977 | Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q. |
| 4.3 | 2013-05-01 | CVE-2013-0538 | Cross-site scripting (XSS) vulnerability in IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element in an HTML e-mail message, aka SPRs JMOY95BLM6 and JMOY95BN49. |
| 5.8 | 2013-05-01 | CVE-2013-0127 | IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 does not block APPLET elements in HTML e-mail, which allows remote attackers to bypass intended restrictions on Java code execution and X-Confirm-Reading-To functionality via a crafted message, aka SPRs JMOY95BLM6 and JMOY95BN49. |
| 9.3 | 2013-01-10 | CVE-2012-4823 | Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method." |
| 9.3 | 2013-01-10 | CVE-2012-4822 | Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via vectors related to "insecure use [of] multiple methods in the java.lang.class class." |
| 9.3 | 2013-01-10 | CVE-2012-4821 | Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via "insecure use" of the (1) java.lang.Class getDeclaredMethods or nd (2) java.lang.reflect.AccessibleObject setAccessible() methods. |
| 9.3 | 2013-01-10 | CVE-2012-4820 | Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to "insecure use of the java.lang.reflect.Method invoke() method." |
| 4.3 | 2012-12-19 | CVE-2012-4846 | IBM Lotus Notes 8.5.x before 8.5.3 FP3 does not include the HTTPOnly flag in a Set-Cookie header for a web-application cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, aka SPRs JMAS7TRNLN and SRAO8U3Q68. |
| 9.3 | 2012-06-20 | CVE-2012-2174 | The URL handler in IBM Lotus Notes 8.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a crafted notes:// URL. |
| 9.3 | 2011-05-31 | CVE-2011-1512 | Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR. |
| 9.3 | 2011-05-31 | CVE-2011-1218 | Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information. |
| 9.3 | 2011-05-31 | CVE-2011-1217 | Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .prz attachment. NOTE: some of these details are obtained from third party information. |
| 9.3 | 2011-05-31 | CVE-2011-1216 | Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7. |
| 9.3 | 2011-05-31 | CVE-2011-1215 | Stack-based buffer overflow in mw8sr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a Microsoft Office document attachment, aka SPR PRAD8823ND. |
| 9.3 | 2011-05-31 | CVE-2011-1214 | Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ. |
| 9.3 | 2011-05-31 | CVE-2011-1213 | Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted header in a .lzh attachment that triggers a stack-based buffer overflow, aka SPR PRAD88MJ2W. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (7) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 14% (2) | CWE-200 | Information Exposure |
| 14% (2) | CWE-189 | Numeric Errors |
| 7% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
| 7% (1) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 7% (1) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
SAINT Exploits
| Description | Link |
|---|---|
| IBM Lotus Notes LZH Attachment Viewer Stack Buffer Overflow | More info here |
| IBM Lotus Notes URL Handler Command Execution | More info here |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 72711 | IBM Lotus Notes Autonomy KeyView kvarcve.dll zip Attachment Parsing Overflow |
| 72710 | IBM Lotus Notes Autonomy KeyView kpprzrdr.dll prz Attachment Parsing Overflow |
| 72709 | IBM Lotus Notes Autonomy KeyView assr.dll Tag Data Parsing Overflow |
| 72708 | IBM Lotus Notes Autonomy KeyView mw8sr.dll Link Parsing Overflow |
| 72707 | IBM Lotus Notes Autonomy KeyView rtfsr.dll Link Parsing Overflow |
| 72706 | IBM Lotus Notes Autonomy KeyView lzhsr.dll Underflow Header Parsing Overflow |
| 72705 | IBM Lotus Notes Autonomy KeyView xlssr.dll Biff Record Parsing Overflow |
OpenVAS Exploits
| id | Description |
|---|---|
| 2011-06-07 | Name : IBM Lotus Notes File Viewers Multiple BOF Vulnerabilities (Win) File : nvt/gb_ibm_lotus_notes_mult_bof_vuln_win.nasl |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-04-02 | IBM Lotus Notes LZH Attachment Viewer buffer overflow attempt RuleID : 49297 - Type : FILE-OTHER - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithPrivilege method call attempt RuleID : 45351 - Type : FILE-JAVA - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithClassLoaders method call attempt RuleID : 45350 - Type : FILE-JAVA - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithPrivilege method call attempt RuleID : 45349 - Type : FILE-JAVA - Revision : 2 |
| 2018-02-06 | IBM Java invokeWithClassLoaders method call attempt RuleID : 45348 - Type : FILE-JAVA - Revision : 2 |
| 2014-01-10 | IBM Lotus Notes LZH Attachment Viewer buffer overflow RuleID : 24209 - Type : FILE-OTHER - Revision : 7 |
| 2014-01-10 | IBM Lotus Notes LZH Attachment Viewer buffer overflow RuleID : 24208 - Type : FILE-OTHER - Revision : 11 |
| 2014-01-10 | IBM Lotus Notes LZH Attachment Viewer buffer overflow RuleID : 24207 - Type : FILE-OTHER - Revision : 11 |
| 2014-01-10 | LZH archive file magic detected RuleID : 24206 - Type : FILE-IDENTIFY - Revision : 15 |
| 2014-01-10 | IBM Lotus Notes URI handler command execution attempt RuleID : 24200 - Type : SERVER-MAIL - Revision : 6 |
| 2014-01-10 | IBM Lotus Notes URI handler command execution attempt RuleID : 24199 - Type : SERVER-MAIL - Revision : 9 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2014-11-08 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2013-1455.nasl - Type: ACT_GATHER_INFO |
| 2014-11-08 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2013-1456.nasl - Type: ACT_GATHER_INFO |
| 2014-05-12 | Name: The remote server is affected by a buffer overflow vulnerability. File: domino_8_5_3fp6_if2.nasl - Type: ACT_GATHER_INFO |
| 2014-05-12 | Name: The remote server is affected by multiple vulnerabilities. File: domino_9_0_1_fp1.nasl - Type: ACT_GATHER_INFO |
| 2014-05-12 | Name: The remote host has software installed that is affected by multiple vulnerabi... File: lotus_domino_9_0_1_fp1.nasl - Type: ACT_GATHER_INFO |
| 2014-05-12 | Name: The remote host has software installed that is affected by multiple vulnerabi... File: lotus_notes_9_0_1_fp1.nasl - Type: ACT_GATHER_INFO |
| 2013-06-20 | Name: The version of IBM Notes installed on the remote Windows host is affected by ... File: lotus_notes_swg21635878.nasl - Type: ACT_GATHER_INFO |
| 2013-05-28 | Name: The version of IBM Notes installed on the remote Windows host accepts Java ap... File: lotus_notes_accepts_java.nasl - Type: ACT_GATHER_INFO |
| 2013-01-24 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1485.nasl - Type: ACT_GATHER_INFO |
| 2012-12-17 | Name: The remote host has software installed that is affected by multiple vulnerabi... File: lotus_notes_8_5_3_fp3.nasl - Type: ACT_GATHER_INFO |
| 2012-11-16 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1465.nasl - Type: ACT_GATHER_INFO |
| 2012-11-16 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1466.nasl - Type: ACT_GATHER_INFO |
| 2012-11-16 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2012-1467.nasl - Type: ACT_GATHER_INFO |
| 2012-08-10 | Name: The remote host has software installed that is affected by a code execution v... File: lotus_notes_8_5_3_fp2.nasl - Type: ACT_GATHER_INFO |
| 2011-10-28 | Name: The remote Windows host has a mail security application installed that is aff... File: symantec_sym_11-013.nasl - Type: ACT_GATHER_INFO |
| 2011-05-31 | Name: The remote Windows host has an application that is affected by multiple buffe... File: notes_keyview_overflows2.nasl - Type: ACT_GATHER_INFO |
