|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
vulnpost-remove
vuln.sg
Date: Tue Oct 23 2007 - 09:38:21 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[vuln.sg] Vulnerability Research Advisory
IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities
by Tan Chew Keong
Release Date: 2007-10-23
Summary
-------
Multiple exploitable buffer overflow vulnerabilities were found within the file attachment viewer in IBM Lotus Notes. The vulnerabilities can be exploited to execute arbitrary code by tricking the user to view a malicious DOC, SAM, WPD, or MIF file attachment using the file attachment viewer in Lotus Notes.
Tested Versions
---------------
Lotus Notes 7.0.2 (Trial)
Details
-------
http://vuln.sg/lotusnotes702-en.html
http://vuln.sg/lotusnotes702-jp.html
Vendor's Technote
-----------------
http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]