Stack-Based Buffer Overflow in IBM Lotus iNotes ActiveX Control
CVE-2010-0919

Currently unrated

Key Information:

Vendor: IBM
Status: Domino Web Access
Vendor: CVE Published:; 3 March 2010

Summary

The stack-based buffer overflow vulnerability in the Lotus Domino Web Access ActiveX control allows remote attackers to execute arbitrary code by sending a specially crafted long URL argument to an unspecified method. This can lead to unauthorized access and control over the affected system, posing serious security risks to users of IBM Lotus iNotes versions prior to the specified updates.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/56555

vdb-entryx_refsource_XF

http://www.osvdb.org/62612

vdb-entryx_refsource_OSVDB

http://securitytracker.com/id?1023662

vdb-entryx_refsource_SECTRACK

EPSS Score

21% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 3, 2010
Vulnerability Reserved
Mar 3, 2010