Home page logo
/

bugtraq logo Bugtraq mailing list archives

[vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities
From: vulnpost-remove () vuln sg
Date: 23 Oct 2007 14:38:21 -0000

[vuln.sg] Vulnerability Research Advisory

IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities

by Tan Chew Keong
Release Date: 2007-10-23

Summary
-------
Multiple exploitable buffer overflow vulnerabilities were found within the file attachment viewer in IBM Lotus Notes. 
The vulnerabilities can be exploited to execute arbitrary code by tricking the user to view a malicious DOC, SAM, WPD, 
or MIF file attachment using the file attachment viewer in Lotus Notes.

Tested Versions
---------------
Lotus Notes 7.0.2 (Trial)

Details
-------
http://vuln.sg/lotusnotes702-en.html
http://vuln.sg/lotusnotes702-jp.html

Vendor's Technote
-----------------
http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111


  By Date           By Thread  

Current thread:
  • [vuln.sg] IBM Lotus Notes Attachment Viewer Buffer Overflow Vulnerabilities vulnpost-remove (Oct 23)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault