IBM Lotus Notes Attachment Handling Multiple Buffer Overflows

This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an application that is affected by
multiple buffer overflow vulnerabilities.

Description :

The file attachment viewer component included with the instance of
Lotus Notes installed on the remote Windows host is reportedly
affected by several buffer overflow vulnerabilities that can be
triggered when handling attachments of various types.

By sending a specially crafted attachment to users of the affected
application and getting them to double-click and view the attachment,
an attacker may be able to execute arbitrary code subject to the
privileges under which the affected application runs.

See also :

http://www.nessus.org/u?bd613361
http://www.nessus.org/u?ebc7ee5b
http://www.nessus.org/u?a86a0423
http://www.nessus.org/u?b1bb9cc4
http://www.coresecurity.com/content/LotusNotes-XLS-viewer-heap-overflow
http://seclists.org/bugtraq/2011/May/178
http://seclists.org/bugtraq/2011/May/179
http://seclists.org/bugtraq/2011/May/181
http://seclists.org/bugtraq/2011/May/182
http://www.securityfocus.com/archive/1/archive/1/518120/100/0/threaded
https://www-304.ibm.com/support/docview.wss?uid=swg21500034

Solution :

Either Install Interim Fix 1 for Notes 8.5.2 Fix Pack 2 / 8.5.2 Fix
Pack 3 or upgrade to 8.5.3. Alternatively, disable attachment viewers.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.3
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now