CVE-2011-2893

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Symphony
Vendor: CVE Published:; 27 July 2011

Summary

The DataPilot feature in IBM Lotus Symphony 3 before FP3 allows user-assisted remote attackers to cause a denial of service (application crash) via a large .xls spreadsheet with an invalid Value reference.

References

http://www.securityfocus.com/bid/48936

vdb-entryx_refsource_BID

http://www.ibm.com/support/docview.wss?uid=swg21505448

x_refsource_CONFIRM

http://www.ibm.com/software/lotus/symphony/buzz.nsf/web_D...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 27, 2011
Vulnerability Reserved
Jul 27, 2011