CVE-2010-5251

Name of the Vulnerable Software and Affected Versions IBM Lotus Notes version 8.5

Description The issue allows local users to gain privileges via a Trojan horse nnoteswc.dll or nlsxbe.dll file in the current working directory. This can be demonstrated by a directory that contains a .vcf, .vcs, or .ics file.

Recommendations For IBM Lotus Notes version 8.5, consider restricting access to the nnoteswc.dll and nlsxbe.dll files to minimize the risk of exploitation. As a temporary workaround, avoid using directories that contain .vcf, .vcs, or .ics files until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.