CVE-2014-0892

Name of the Vulnerable Software and Affected Versions IBM Notes and Domino versions 8.5.x through 8.5.3 FP6 IF2 and versions 9.x through 9.0.1

Description The issue arises from incorrect gcc options used in IBM Notes and Domino, which makes it easier for remote attackers to execute arbitrary code. This is possible due to the absence of the NX protection mechanism, allowing attackers to place crafted x86 code on the stack.

Recommendations For versions 8.5.x through 8.5.3 FP6 IF2, update to 8.5.3 FP6 IF3 or later. For versions 9.x through 9.0.1, update to 9.0.1 FP1 or later.