Denial of Service Vulnerability in IBM Lotus Symphony Presentation Software
CVE-2011-2888

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Symphony
Vendor: CVE Published:; 27 July 2011

What is CVE-2011-2888?

IBM Lotus Symphony 3, prior to Fix Pack 3, is susceptible to a denial of service vulnerability that can be exploited by remote attackers. By using specially crafted complex graphics in presentations, an attacker can trigger an application hang, disrupting user operations and impacting productivity. This vulnerability poses a significant threat to users relying on this software for critical tasks, as it can incapacitate the application unexpectedly.

References

http://www.securityfocus.com/bid/48936

vdb-entryx_refsource_BID

http://www.ibm.com/support/docview.wss?uid=swg21505448

x_refsource_CONFIRM

http://www.ibm.com/software/lotus/symphony/buzz.nsf/web_D...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 27, 2011
Vulnerability Reserved
Jul 27, 2011