Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to execute arbitrary code via a crafted web page, aka SPR PTHN97XHFW.
oryginał ENCVSS Vector
AV:N/AC:M/Au:N/C:C/I:C/A:CIBM Lotus Domino
APPIbm9.0.0.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Referencje
Powiązane podatności
CVE-2014-3086HIGH7.5ten sam produkt
Unspecified vulnerability in the IBM Java Virtual Machine, as used in IBM WebSphere Real Time 3 before Service...
CVE-2014-0822HIGH7.8ten sam produkt
The IMAP server in IBM Domino 8.5.x before 8.5.3 FP6 IF1 and 9.0.x before 9.0.1 FP1 allows remote attackers to...
CVE-2013-4068HIGH7.1ten sam produkt
Buffer overflow in iNotes in IBM Domino 8.5.3 before FP5 IF1 and 9.0 before IF4 allows remote authenticated us...
CVE-2013-0487HIGH8.5ten sam produkt
The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leve...
CVE-2012-4821HIGH9.3ten sam produkt
Multiple unspecified vulnerabilities in the JRE component in IBM Java 7 SR2 and earlier, Java 6.0.1 SR3 and ea...