IBM Lotus Notes File Viewers Multiple BOF Vulnerabilities (Win)

Summary
This host has IBM Lotus Notes installed and is prone to multiple buffer overflow vulnerabilities.
Impact
Successful exploitation will allow attackers to execute arbitrary code in the context of the user running the application. Impact Level: Application
Solution
Upgrade to IBM Lotus Notes 8.5.2 FP3 For updates refer to http://www.ibm.com/software/lotus/products/notes/
Insight
The flaws are due to: - An error within 'xlssr.dll' when parsing a Binary File Format (BIFF) record in an Excel spreadsheet. - An integer underflow error within 'lzhsr.dll' when parsing header information in a LZH archive file. - A boundary error within 'rtfsr.dll' when parsing hyperlink information in a Rich Text Format (RTF) document. - A boundary error within 'mw8sr.dll' when parsing hyperlink information in a Microsoft Office Document (DOC) file. - A boundary error within 'assr.dll' when parsing tag information in an Applix Spreadsheet. - An unspecified error within 'kpprzrdr.dll' when parsing Lotus Notes .prz file format. - An unspecified error within 'kvarcve.dll' when parsing Lotus Notes .zip file format.
Affected
IBM Lotus Notes Version 8.5.2 FP2 and prior on windows
References