Unspecified vulnerability in nlnotes.dll in the client in IBM Lotus Notes 6.5, 7.0.x before 7.0.2 CCH, and 8.0.x before 8.0.1 allows remote attackers to execute arbitrary code via a crafted attachment in an e-mail message sent over SMTP, a variant of CVE-2007-6706.
References
Link | Resource |
---|---|
http://securitytracker.com/id?1019464 | |
http://www-1.ibm.com/support/docview.wss?uid=swg21271957 | Vendor Advisory |
http://securitytracker.com/id?1019464 | |
http://www-1.ibm.com/support/docview.wss?uid=swg21271957 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:43
Type | Values Removed | Values Added |
---|---|---|
References | () http://securitytracker.com/id?1019464 - | |
References | () http://www-1.ibm.com/support/docview.wss?uid=swg21271957 - Vendor Advisory |
Information
Published : 2008-03-09 02:44
Updated : 2024-11-21 00:43
NVD link : CVE-2008-1217
Mitre link : CVE-2008-1217
CVE.ORG link : CVE-2008-1217
JSON object : View
Products Affected
ibm
- lotus_notes
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')