Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
SMTP:MAL:LOTUS-DOC-VIEWER |
|---|---|
Severity |
Major |
Recommended |
No |
Category |
SMTP |
Keywords |
IBM Lotus Notes DOC Attachment Viewer Buffer Overflow |
Release Date |
2010/10/18 |
Update Number |
1794 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
SMTP: IBM Lotus Notes DOC Attachment Viewer Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the IBM Lotus Notes DOC Attachment Viewer. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Lotus Domino is prone to a vulnerability that may allow attackers to access other users' sessions. An attacker could exploit this issue to read or write content to arbitrary Lotus Notes sessions when deployed in a shared environment.
Affected Products
- Ibm lotus_domino 6.5.5 FP3
- Ibm lotus_domino 6.5.6
- Ibm lotus_domino 7.0.3
- Ibm lotus_domino 8.0
- Ibm lotus_notes 6.5.5 FP3
- Ibm lotus_notes 6.5.6
- Ibm lotus_notes 7.0.2 FP1
- Ibm lotus_notes 8.0
References
- BugTraq: 26146
- CVE: CVE-2007-5544