KLA10202
ACE vulnerabilities in IBM Lotus Notes
Updated: 06/01/2019
Detect date
?
05/31/2011
Severity
?
Critical
Description

An unspecified vulnerability was found in IBM products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to gcc keys. Below is a complete list of vulnerabilities

  1. A buffer overflow can be exploited by remote via specially designed .xls, .zip, .prz, .rtf or Applix attachments;
  2. An integer underflow can be exploited remotely via a specially designed .lzh attachement
Affected products

IBM Lotus Notes versions 8.5.2.2 and earlier

Solution

Update to latest version

Impacts
?
ACE 
[?]
Related products
IBM Notes
CVE-IDS
?
CVE-2011-12139.3Critical
CVE-2011-12179.3Critical
CVE-2011-12189.3Critical
CVE-2011-12149.3Critical
CVE-2011-12169.3Critical
CVE-2011-15129.3Critical