Denial of Service Vulnerability in IBM Lotus Symphony
CVE-2011-2886

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Symphony
Vendor: CVE Published:; 27 July 2011

Summary

IBM Lotus Symphony 3 versions prior to FP3 are susceptible to denial of service attacks. Attackers can exploit this vulnerability by using specially crafted .docx documents that contain empty bullet styles for parent bullets, leading to application crashes. This flaw highlights the importance of verifying document formats and ensuring software is up to date to mitigate potential risks.

References

http://www.securityfocus.com/bid/48936

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/68890

vdb-entryx_refsource_XF

http://www.ibm.com/support/docview.wss?uid=swg21505448

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 27, 2011
Vulnerability Reserved
Jul 27, 2011