PT-2008-1667 · Ibm · Ibm Lotus Notes
Publicado
2008-03-09
·
Atualizado
2011-03-08
·
CVE-2007-6706
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM Lotus Notes versions 6.5, 7.0.x before 7.0.2 CCH or 7.0.3, and possibly 8.0
Description
The issue allows remote attackers to execute arbitrary code via crafted text in an e-mail message sent over SMTP.
Recommendations
For IBM Lotus Notes version 6.5, update to a version later than 6.5.
For IBM Lotus Notes version 7.0.x, update to 7.0.2 CCH or 7.0.3, or later.
For IBM Lotus Notes version 8.0, if affected, update to a later version that addresses this issue.
Correção
RCE
Code Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Lotus Notes