PT-2008-2810 · Ibm · Ibm Lotus Notes

Publicado

2008-03-09

Atualizado

2009-09-03

CVE-2008-1217

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions IBM Lotus Notes versions 6.5, 7.0.x through 7.0.2 CCH, 8.0.x through 8.0.1

Description The issue allows remote attackers to execute arbitrary code via a crafted attachment in an e-mail message sent over SMTP.

Recommendations For versions 6.5, 7.0.x through 7.0.2 CCH, and 8.0.x through 8.0.1, update to a version that is not affected by this issue, such as 7.0.2 CCH or later for the 7.0.x series, and 8.0.1 or later for the 8.0.x series.

Correção

RCE

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

CVE-2008-1217

Produtos afetados

Ibm Lotus Notes

PT-2008-2810 · Ibm · Ibm Lotus Notes

CVE-2008-1217

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4