Detections
Analytics
Lotus Notes Client < 7.0.3 / 8.0.1 Multiple Overflows
high Nessus Plugin ID 27534
Synopsis
The remote Windows host has an application that is affected by several buffer overflow vulnerabilities.Description
The version of Lotus Notes installed on the remote Windows host is reportedly affected by several buffer overflows in its file attachment viewer when handling attachments of various types. By sending a specially crafted attachment to users of the affected application and getting them to double-click and view the attachment, an attacker may be able to execute arbitrary code subject to the privileges under which the affected application runs.It is also affected by another buffer overflow vulnerability in the TagAttributeListCopy function in ''nnotes.dll'' that could be triggered when a specially crafted message is replied to, forwarded, or copied to the clipboard by a user of the application.
Solution
Upgrade to Lotus Notes version 7.0.3 / 8.0.1 or later.See Also
https://www.securityfocus.com/archive/1/482664/30/0/threaded
https://www-01.ibm.com/support/docview.wss?uid=swg21271111
http://www-1.ibm.com/support/docview.wss?uid=swg21272836
http://www.nessus.org/u?c52c5e1e
Plugin Details
Severity: High
ID: 27534
File Name: notes_keyview_overflows.nasl
Version: 1.18
Type: local
Agent: windows
Family: Windows
Published: 10/24/2007
Updated: 11/15/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.4
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 7.7
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: cpe:/a:ibm:lotus_notes
Required KB Items: SMB/name, SMB/login, SMB/password, SMB/Lotus_Notes/Installed
Exploit Available: true
Exploit Ease: Exploits are available
Exploitable With
CANVAS (D2ExploitPack)
Core Impact
Reference Information
CVE: CVE-2007-4222, CVE-2007-5909, CVE-2007-5910
CWE: 119