This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Ibm First view 1999-03-01
Product Lotus Notes Last view 2018-07-16
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:* 39
cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:* 32
cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:* 29
cpe:2.3:a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:* 28
cpe:2.3:a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:* 27
cpe:2.3:a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:* 27
cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:* 26
cpe:2.3:a:ibm:lotus_notes:8.5:*:*:*:*:*:*:* 25
cpe:2.3:a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:* 24
cpe:2.3:a:ibm:lotus_notes:6.0.1:*:*:*:*:*:*:* 23
cpe:2.3:a:ibm:lotus_notes:6.0.3:*:*:*:*:*:*:* 23
cpe:2.3:a:ibm:lotus_notes:6.0.2:*:*:*:*:*:*:* 23
cpe:2.3:a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:* 22
cpe:2.3:a:ibm:lotus_notes:6.0.4:*:*:*:*:*:*:* 22
cpe:2.3:a:ibm:lotus_notes:8.0.1:*:*:*:*:*:*:* 21
cpe:2.3:a:ibm:lotus_notes:8.5.1:*:*:*:*:*:*:* 21
cpe:2.3:a:ibm:lotus_notes:5.0:*:*:*:*:*:*:* 20
cpe:2.3:a:ibm:lotus_notes:8.5.1.1:*:*:*:*:*:*:* 20
cpe:2.3:a:ibm:lotus_notes:7.0.1:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:6.0.5:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:8.5.1.3:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:8.5.1.0:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:8.5.0.0:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:8.5.1.2:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:8.5.0.1:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:8.5.1.4:*:*:*:*:*:*:* 19
cpe:2.3:a:ibm:lotus_notes:6.5.5:*:*:*:*:*:*:* 18
cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:* 18
cpe:2.3:a:ibm:lotus_notes:8.5.2.1:*:*:*:*:*:*:* 18
cpe:2.3:a:ibm:lotus_notes:8.5.2.0:*:*:*:*:*:*:* 18
cpe:2.3:a:ibm:lotus_notes:8.5.1.5:*:*:*:*:*:*:* 18
cpe:2.3:a:ibm:lotus_notes:8.5.2.2:*:*:*:*:*:*:* 18
cpe:2.3:a:ibm:lotus_notes:8.0.0:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:5.0.12:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:4.5:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:r5:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:5.0.2:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:5.0.4:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:5.0.1:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:5.0.5:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:8.0.2:*:*:*:*:*:*:* 17
cpe:2.3:a:ibm:lotus_notes:4.6:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:5.0.9a:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:r6:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:5.0.10:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:5.0.11:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:4.2.2:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:4.2.1:*:*:*:*:*:*:* 16
cpe:2.3:a:ibm:lotus_notes:3.0:*:*:*:*:*:*:* 16

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7 2018-07-16 CVE-2013-0522

The Notes Client Single Logon feature in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3, and 9.0 on Windows allows local users to discover passwords via vectors involving an unspecified operating system communication mechanism for password transmission between Windows and Notes. IBM X-Force ID: 82531.

7.5 2014-08-11 CVE-2014-3086

Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service Refresh 7 FP1 and other products, allows remote attackers to gain privileges by leveraging the ability to execute code in the context of a security manager.

5 2014-04-23 CVE-2014-0892

IBM Notes and Domino 8.5.x before 8.5.3 FP6 IF3 and 9.x before 9.0.1 FP1 on 32-bit Linux platforms use incorrect gcc options, which makes it easier for remote attackers to execute arbitrary code by leveraging the absence of the NX protection mechanism and placing crafted x86 code on the stack, aka SPR KLYH9GGS9W.

9.3 2013-07-18 CVE-2012-6349

Buffer overflow in the .mdb parser in Autonomy KeyView IDOL, as used in IBM Notes 8.5.x before 8.5.3 FP4, allows remote attackers to execute arbitrary code via a crafted file, aka SPR KLYH92XL3W.

7.2 2013-06-21 CVE-2013-0536

ntmulti.exe in the Multi User Profile Cleanup service in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3 before FP5, and 9.0 before IF2 allows local users to gain privileges via vectors that arrange for code to be executed during the next login session of a different user, aka SPR PJOK959J24.

6.8 2013-05-10 CVE-2013-2977

Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q.

4.3 2013-05-01 CVE-2013-0538

Cross-site scripting (XSS) vulnerability in IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element in an HTML e-mail message, aka SPRs JMOY95BLM6 and JMOY95BN49.

5.8 2013-05-01 CVE-2013-0127

IBM Lotus Notes 8.x before 8.5.3 FP4 Interim Fix 1 and 9.0 before Interim Fix 1 does not block APPLET elements in HTML e-mail, which allows remote attackers to bypass intended restrictions on Java code execution and X-Confirm-Reading-To functionality via a crafted message, aka SPRs JMOY95BLM6 and JMOY95BN49.

9.3 2013-01-10 CVE-2012-4823

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allows remote attackers to execute arbitrary code via vectors related to "insecure use of the java.lang.ClassLoder defineClass() method."

9.3 2013-01-10 CVE-2012-4822

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via vectors related to "insecure use [of] multiple methods in the java.lang.class class."

9.3 2013-01-10 CVE-2012-4821

Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, allow remote attackers to execute arbitrary code via "insecure use" of the (1) java.lang.Class getDeclaredMethods or nd (2) java.lang.reflect.AccessibleObject setAccessible() methods.

9.3 2013-01-10 CVE-2012-4820

Unspecified vulnerability in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and earlier, Java 6 SR11 and earlier, Java 5 SR14 and earlier, and Java 142 SR13 FP13 and earlier; as used in IBM Rational Host On-Demand, Rational Change, Tivoli Monitoring, Smart Analytics System 5600, Tivoli Remote Control 5.1.2, WebSphere Real Time, Lotus Notes & Domino, Tivoli Storage Productivity Center, and Service Deliver Manager; and other products from other vendors such as Red Hat, when running under a security manager, allows remote attackers to gain privileges by modifying or removing the security manager via vectors related to "insecure use of the java.lang.reflect.Method invoke() method."

4.3 2012-12-19 CVE-2012-4846

IBM Lotus Notes 8.5.x before 8.5.3 FP3 does not include the HTTPOnly flag in a Set-Cookie header for a web-application cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, aka SPRs JMAS7TRNLN and SRAO8U3Q68.

6.9 2012-09-07 CVE-2010-5251

Multiple untrusted search path vulnerabilities in IBM Lotus Notes 8.5 allow local users to gain privileges via a Trojan horse (1) nnoteswc.dll or (2) nlsxbe.dll file in the current working directory, as demonstrated by a directory that contains a .vcf, .vcs, or .ics file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

9.3 2012-06-20 CVE-2012-2174

The URL handler in IBM Lotus Notes 8.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a crafted notes:// URL.

9.3 2011-05-31 CVE-2011-1512

Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR.

9.3 2011-05-31 CVE-2011-1218

Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information.

9.3 2011-05-31 CVE-2011-1217

Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .prz attachment. NOTE: some of these details are obtained from third party information.

9.3 2011-05-31 CVE-2011-1216

Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7.

9.3 2011-05-31 CVE-2011-1215

Stack-based buffer overflow in mw8sr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a Microsoft Office document attachment, aka SPR PRAD8823ND.

9.3 2011-05-31 CVE-2011-1214

Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ.

9.3 2011-05-31 CVE-2011-1213

Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted header in a .lzh attachment that triggers a stack-based buffer overflow, aka SPR PRAD88MJ2W.

9.3 2011-02-08 CVE-2011-0912

Argument injection vulnerability in IBM Lotus Notes 8.0.x before 8.0.2 FP6 and 8.5.x before 8.5.1 FP5 allows remote attackers to execute arbitrary code via a cai:// URL containing a --launcher.library option that specifies a UNC share pathname for a DLL file, aka SPR PRAD82YJW2.

10 2010-04-29 CVE-2010-1608

Stack-based buffer overflow in IBM Lotus Notes 8.5 and 8.5fp1, and possibly other versions, allows remote attackers to execute arbitrary code via unknown attack vectors, as demonstrated by the vd_ln module in VulnDisco 9.0. NOTE: as of 20100222, this disclosure has no actionable information. However, because the VulnDisco author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

2.1 2010-04-20 CVE-2010-1487

IBM Lotus Notes 7.0, 8.0, and 8.5 stores administrative credentials in cleartext in SURunAs.exe, which allows local users to obtain sensitive information by examining this file, aka SPR JSTN837SEG.

CWE : Common Weakness Enumeration

%idName
51% (21) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
14% (6) CWE-264 Permissions, Privileges, and Access Controls
9% (4) CWE-94 Failure to Control Generation of Code ('Code Injection')
7% (3) CWE-200 Information Exposure
7% (3) CWE-189 Numeric Errors
2% (1) CWE-255 Credentials Management
2% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
2% (1) CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path ...
2% (1) CWE-20 Improper Input Validation

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs
CAPEC-17 Accessing, Modifying or Executing Executable Files
CAPEC-41 Using Meta-characters in E-mail Headers to Inject Malicious Payloads
CAPEC-60 Reusing Session IDs (aka Session Replay)
CAPEC-61 Session Fixation
CAPEC-62 Cross Site Request Forgery (aka Session Riding)
CAPEC-88 OS Command Injection
CAPEC-122 Exploitation of Authorization
CAPEC-133 Try All Common Application Switches and Options
CAPEC-180 Exploiting Incorrectly Configured Access Control Security Levels
CAPEC-232 Exploitation of Privilege/Trust
CAPEC-234 Hijacking a privileged process

Oval Markup Language : Definitions

OvalID Name
oval:org.mitre.oval:def:14725 IBM Lotus Notes 7.0, 8.0, and 8.5 stores administrative credentials in cleart...
oval:org.mitre.oval:def:14489 Stack-based buffer overflow in IBM Lotus Notes 8.5 and 8.5fp1, and possibly o...
oval:org.mitre.oval:def:14348 Argument injection vulnerability in IBM Lotus Notes 8.0.x before 8.0.2 FP6 an...
oval:org.mitre.oval:def:14634 Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Note...
oval:org.mitre.oval:def:14309 Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM ...
oval:org.mitre.oval:def:14650 Stack-based buffer overflow in mw8sr.dll in Autonomy KeyView, as used in IBM ...
oval:org.mitre.oval:def:13796 Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM L...
oval:org.mitre.oval:def:14822 Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Not...
oval:org.mitre.oval:def:14238 Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Note...
oval:org.mitre.oval:def:14203 Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM L...

SAINT Exploits

Description Link
Lotus Notes MIF attachment viewer buffer overflow More info here
Lotus Notes Attachment Viewer UUE file buffer overflow More info here
Lotus Notes HTML Speed Reader URL buffer overflow More info here
Lotus Notes TagAttributeListCopy buffer overflow More info here
Lotus Notes WPD attachment viewer buffer overflow More info here
Lotus Notes Lotus 1-2-3 file viewer buffer overflow More info here
IBM Lotus Notes LZH Attachment Viewer Stack Buffer Overflow More info here
Lotus Notes Applix Graphics viewer BEGIN tag buffer overflow More info here
IBM Lotus Notes URL Handler Command Execution More info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
72711 IBM Lotus Notes Autonomy KeyView kvarcve.dll zip Attachment Parsing Overflow
72710 IBM Lotus Notes Autonomy KeyView kpprzrdr.dll prz Attachment Parsing Overflow
72709 IBM Lotus Notes Autonomy KeyView assr.dll Tag Data Parsing Overflow
72708 IBM Lotus Notes Autonomy KeyView mw8sr.dll Link Parsing Overflow
72707 IBM Lotus Notes Autonomy KeyView rtfsr.dll Link Parsing Overflow
72706 IBM Lotus Notes Autonomy KeyView lzhsr.dll Underflow Header Parsing Overflow
72705 IBM Lotus Notes Autonomy KeyView xlssr.dll Biff Record Parsing Overflow
70841 IBM Lotus Notes cai URI Handler --launcher.library Arbitrary Code Execution
63856 IBM Lotus Notes SURunAs.exe Cleartext Credential Local Disclosure
62743 Autonomy KeyView SDK kvolefio.dll OLE File Handling Overflow
62415 IBM Lotus Notes Unspecified Overflow
59741 Stuffit Expander ZIP Filename Handling Overflow DoS
59740 Verity KeyView ZIP Filename Handling Overflow DoS
59739 IBM Lotus Notes ZIP Filename Handling Overflow DoS
59738 Microsoft Windows ZIP Filename Handling Overflow DoS
57935 IBM Lotus Notes RSS Reader Widget MSIE Local Machine Zone Arbitrary Script Ex...
57334 Autonomy Keyview XLS Viewer (xlssr.dll) XLS File SST Record Handling Overflow
52713 Autonomy KeyView SDK wp6sr.dll Word Perfect Document Handling Overflow
44439 Autonomy Keyview for IBM Lotus Notes mimesr.dll Crafted MIME Attachment Overflow
44196 Autonomy Keyview Multiple Products EML reader (emlsr.dll) Multiple Overflows
44195 Autonomy Keyview Multiple Products Applix Graphics Reader (kpagrdr.dll) Toke...
44194 Autonomy Keyview Multiple Products Applix Graphics Reader (kpagrdr.dll) Mult...
44193 Autonomy Keyview Multiple Products Folio Flat File (foliosr.dll) Multiple At...
44192 Autonomy Keyview Multiple Products kvdocve.dll Path Handling Overflow
44191 Autonomy Keyview Multiple Products HTML Speed Reader (htmsr.dll) Multiple Ta...

ExploitDB Exploits

id Description
3302 Lotus Domino <= R6 Webmail Remote Password Hash Dumper Exploit

OpenVAS Exploits

id Description
2011-06-07 Name : IBM Lotus Notes File Viewers Multiple BOF Vulnerabilities (Win)
File : nvt/gb_ibm_lotus_notes_mult_bof_vuln_win.nasl
2011-03-25 Name : IBM Lotus Notes 'cai' URI and iCal Remote Code Execution Vulnerabilities (Win)
File : nvt/secpod_ibm_lotus_notes_code_exec_vuln_win.nasl
2010-05-05 Name : IBM Lotus Notes Buffer Overflow Vulnerability (Win)
File : nvt/gb_ibm_lotus_notes_bof_vuln_win.nasl
2009-09-11 Name : IBM Lotus Notes RSS Reader Widget HTML Injection Vulnerability (Linux)
File : nvt/secpod_ibm_lotus_notes_html_inj_vuln_lin.nasl
2009-09-11 Name : IBM Lotus Notes RSS Reader Widget HTML Injection Vulnerability (Win)
File : nvt/secpod_ibm_lotus_notes_html_inj_vuln_win.nasl
2009-03-20 Name : Ubuntu USN-735-1 (gst-plugins-base0.10)
File : nvt/ubuntu_735_1.nasl
2009-03-20 Name : Ubuntu USN-736-1 (gst-plugins-good0.10)
File : nvt/ubuntu_736_1.nasl
2009-03-20 Name : Ubuntu USN-737-1 (libsoup)
File : nvt/ubuntu_737_1.nasl
2009-03-20 Name : Ubuntu USN-739-1 (amarok)
File : nvt/ubuntu_739_1.nasl
2005-11-03 Name : Unchecked Buffer in Decompression Functions(Q329048)
File : nvt/smb_nt_ms02-054.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2009-B-0042 Autonomy KeyView Buffer Overflow Vulnerability in Symantec Mail Security and ...
Severity: Category II - VMSKEY: V0019906
2008-B-0039 Symantec Mail Security Buffer Overflow Vulnerabilities
Severity: Category I - VMSKEY: V0015964

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2019-04-02 IBM Lotus Notes LZH Attachment Viewer buffer overflow attempt
RuleID : 49297 - Type : FILE-OTHER - Revision : 2
2018-02-06 IBM Java invokeWithPrivilege method call attempt
RuleID : 45351 - Type : FILE-JAVA - Revision : 2
2018-02-06 IBM Java invokeWithClassLoaders method call attempt
RuleID : 45350 - Type : FILE-JAVA - Revision : 2
2018-02-06 IBM Java invokeWithPrivilege method call attempt
RuleID : 45349 - Type : FILE-JAVA - Revision : 2
2018-02-06 IBM Java invokeWithClassLoaders method call attempt
RuleID : 45348 - Type : FILE-JAVA - Revision : 2
2015-07-08 IBM Lotus Notes WPD attachment handling buffer overflow attempt
RuleID : 34632 - Type : SERVER-MAIL - Revision : 2
2014-01-10 IBM Lotus Notes LZH Attachment Viewer buffer overflow
RuleID : 24209 - Type : FILE-OTHER - Revision : 7
2014-01-10 IBM Lotus Notes LZH Attachment Viewer buffer overflow
RuleID : 24208 - Type : FILE-OTHER - Revision : 11
2014-01-10 IBM Lotus Notes LZH Attachment Viewer buffer overflow
RuleID : 24207 - Type : FILE-OTHER - Revision : 11
2014-01-10 LZH archive file magic detected
RuleID : 24206 - Type : FILE-IDENTIFY - Revision : 15
2014-01-10 IBM Lotus Notes URI handler command execution attempt
RuleID : 24200 - Type : SERVER-MAIL - Revision : 6
2014-01-10 IBM Lotus Notes URI handler command execution attempt
RuleID : 24199 - Type : SERVER-MAIL - Revision : 9
2014-01-10 IBM Lotus Notes Applix Graphics Parsing Buffer Overflow
RuleID : 18603 - Type : SERVER-MAIL - Revision : 8
2014-01-10 Lotus Notes MIF viewer statement data overflow 2
RuleID : 18477 - Type : SERVER-MAIL - Revision : 8
2014-01-10 IBM Lotus Notes DOC attachment viewer buffer overflow
RuleID : 18476 - Type : SERVER-MAIL - Revision : 9
2014-01-10 IBM Lotus Notes WPD attachment handling buffer overflow attempt
RuleID : 17777 - Type : SERVER-MAIL - Revision : 11
2014-01-10 IBM Lotus Notes HTML input tag buffer overflow attempt
RuleID : 17717 - Type : SERVER-MAIL - Revision : 12
2014-01-10 IBM Lotus Notes DOC attachment viewer buffer overflow
RuleID : 17716 - Type : SERVER-MAIL - Revision : 11
2014-01-10 IBM Lotus Notes Applix Graphics Parsing Buffer Overflow
RuleID : 17559 - Type : FILE-OTHER - Revision : 10
2014-01-10 IBM Lotus Notes Cross Site Scripting attempt
RuleID : 17346 - Type : SERVER-OTHER - Revision : 11
2014-01-10 Lotus Notes Attachment Viewer UUE file buffer overflow attempt
RuleID : 17333 - Type : SERVER-MAIL - Revision : 13
2014-01-10 IBM Lotus Notes HTML Speed Reader Long URL buffer overflow attempt
RuleID : 17331 - Type : SERVER-MAIL - Revision : 9
2014-01-10 Autonomy KeyView SDK Excel file SST parsing integer overflow attempt
RuleID : 16458 - Type : WEB-CLIENT - Revision : 4
2014-01-10 Microsoft Office Excel SST record remote code execution attempt
RuleID : 15541 - Type : FILE-OFFICE - Revision : 19
2014-01-10 IBM Lotus Notes DOC attachment viewer buffer overflow
RuleID : 15485 - Type : SERVER-MAIL - Revision : 8

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2015-02-25 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2015-0264.nasl - Type: ACT_GATHER_INFO
2014-11-08 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2013-1456.nasl - Type: ACT_GATHER_INFO
2014-11-08 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2013-1455.nasl - Type: ACT_GATHER_INFO
2014-08-22 Name: The remote AIX host has a version of Java SDK installed that is affected by m...
File: aix_java_jul2014_advisory.nasl - Type: ACT_GATHER_INFO
2014-08-12 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2014-1042.nasl - Type: ACT_GATHER_INFO
2014-08-12 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2014-1041.nasl - Type: ACT_GATHER_INFO
2014-08-08 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2014-1033.nasl - Type: ACT_GATHER_INFO
2014-08-08 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2014-1036.nasl - Type: ACT_GATHER_INFO
2014-05-12 Name: The remote host has software installed that is affected by multiple vulnerabi...
File: lotus_domino_9_0_1_fp1.nasl - Type: ACT_GATHER_INFO
2014-05-12 Name: The remote server is affected by multiple vulnerabilities.
File: domino_9_0_1_fp1.nasl - Type: ACT_GATHER_INFO
2014-05-12 Name: The remote server is affected by a buffer overflow vulnerability.
File: domino_8_5_3fp6_if2.nasl - Type: ACT_GATHER_INFO
2014-05-12 Name: The remote host has software installed that is affected by multiple vulnerabi...
File: lotus_notes_9_0_1_fp1.nasl - Type: ACT_GATHER_INFO
2013-07-17 Name: The remote host has software installed that is affected by multiple buffer ov...
File: symantec_sms_smtp_sym_08-010.nasl - Type: ACT_GATHER_INFO
2013-07-17 Name: The remote host has software installed that is affected by multiple buffer ov...
File: symantec_sms_sym_08-010.nasl - Type: ACT_GATHER_INFO
2013-06-20 Name: The version of IBM Notes installed on the remote Windows host is affected by ...
File: lotus_notes_swg21635878.nasl - Type: ACT_GATHER_INFO
2013-06-20 Name: The remote host has software installed that is affected by a code execution v...
File: lotus_notes_swg21633827.nasl - Type: ACT_GATHER_INFO
2013-05-31 Name: The version of IBM Notes installed on the remote Windows host is affected by ...
File: lotus_notes_single_signon.nasl - Type: ACT_GATHER_INFO
2013-05-28 Name: The version of IBM Notes installed on the remote Windows host accepts Java ap...
File: lotus_notes_accepts_java.nasl - Type: ACT_GATHER_INFO
2013-01-24 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2012-1485.nasl - Type: ACT_GATHER_INFO
2012-12-17 Name: The remote host has software installed that is affected by multiple vulnerabi...
File: lotus_notes_8_5_3_fp3.nasl - Type: ACT_GATHER_INFO
2012-11-16 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2012-1466.nasl - Type: ACT_GATHER_INFO
2012-11-16 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2012-1467.nasl - Type: ACT_GATHER_INFO
2012-11-16 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2012-1465.nasl - Type: ACT_GATHER_INFO
2012-08-10 Name: The remote host has software installed that is affected by a code execution v...
File: lotus_notes_8_5_3_fp2.nasl - Type: ACT_GATHER_INFO
2011-10-28 Name: The remote Windows host has a mail security application installed that is aff...
File: symantec_sym_11-013.nasl - Type: ACT_GATHER_INFO