IBM Lotus iNotes Vulnerability Due to Improper Navigation Handling
CVE-2010-0276

Currently unrated

Key Information:

Vendor: IBM
Status: Domino Web Access; Lotus Inotes; Lotus Domino
Vendor: CVE Published:; 9 January 2010

Summary

IBM Lotus iNotes, also known as Domino Web Access (DWA), prior to version 8.0.2 FP3, exhibits a flaw in how it processes the navigation of the 'Try Lotus iNotes anyway' link when users encounter a page indicating that their browser is unsupported. The issue may allow attackers to exploit unspecified impacts and attack vectors, which could compromise user experience and security.

References

http://secunia.com/advisories/38026

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/55473

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2010/0077

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Jan 9, 2010
Vulnerability Reserved
Jan 9, 2010