IBM Lotus Notes 'cai' URI And ICal Remote Code Execution Vulnerabilities (Win) Network Vulnerability

Summary

This host has IBM Lotus Notes installed and is prone to remote code execution vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code in the context of the user running the application. Impact Level: Application

Solution

Upgrade to IBM Lotus Notes 8.0.2 FP6 or 8.5.1 FP5 For updates refer to http://www.ibm.com/software/lotus/products/notes/

Insight

The flaws are due to: - An input validation error when processing the '--launcher.library' switch within a 'cai:' URI, which could allow attackers to load a malicious library. - A buffer overflow error related to 'iCal', which could be exploited by attackers to execute arbitrary code.

Affected

IBM Lotus Notes Version 8.0.x before 8.0.2 FP6 and 8.5.x before 8.5.1 FP5 on windows

References

http://secunia.com/advisories/43222
http://www.vupen.com/english/advisories/2011/0295
https://www-304.ibm.com/support/docview.wss?uid=swg21461514

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-0912

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities-01 Dec13 (Mac OS X)
3S CoDeSys CmpWebServer Multiple Vulnerabilities
Adobe AIR Multiple Vulnerabilities -01 Feb13 (Windows)
Adobe Dreamweaver Insecure Library Loading Vulnerability
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)

IBM Lotus Notes 'cai' URI and iCal Remote Code Execution Vulnerabilities (Win)

Take action and discover your vulnerabilities