CVE-2020-14268

Name of the Vulnerable Software and Affected Versions Notes client versions 9 and 10

Description A vulnerability in the MIME message handling could potentially be exploited by an unauthenticated attacker, resulting in a stack buffer overflow. This could allow a remote attacker to crash the client or inject code into the system, which would execute with the privileges of the client.

Recommendations For versions 9 and 10, consider restricting access to MIME messages until a patch is available. As a temporary workaround, consider disabling the MIME message handling feature in the Notes client until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.