Computer Security
[EN] securityvulns.ru no-pyccku


IBM Lotus Notes multiple security vulnerabilities
Published:26.05.2011
Source:
SecurityVulns ID:11690
Type:client
Threat Level:
7/10
Description:Memory corruptions on BIFF, Applix, Microsoft Office, RTF and LZH files formats parsing.
Affected:IBM : Lotus Notes 6.5
 IBM : Lotus Notes 6.0
 IBM : Lotus Notes 7.0
 IBM : Lotus Notes 8.0
 IBM : Lotus Notes 8.5
CVE:CVE-2011-1512 (Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 05.24.11: IBM Lotus Notes Office Document Attachment Viewer Stack Buffer Overflow (26.05.2011)
 documentIDEFENSE, iDefense Security Advisory 05.24.11: IBM Lotus Notes RTF Attachment Viewer Stack Buffer Overflow (26.05.2011)
 documentIDEFENSE, iDefense Security Advisory 05.24.11: IBM Lotus Notes LZH Attachment Viewer Stack Buffer Overflow (26.05.2011)
 documentIDEFENSE, iDefense Security Advisory 05.24.11: IBM Lotus Notes Applix Attachment Viewer Stack Buffer Overflow (26.05.2011)
 documentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2010-0908: Lotus Notes XLS viewer malformed BIFF record heap overflow (26.05.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod