Integer Overflow Vulnerability in IBM Notes Email Client
CVE-2013-2977

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Notes
Vendor: CVE Published:; 10 May 2013

Badges

👾 Exploit Exists🟣 EPSS 21%

What is CVE-2013-2977?

IBM Notes is prone to an integer overflow vulnerability that can be exploited when a user previews an email containing a specially crafted PNG image. This flaw affects multiple versions of the application on both Windows and Linux platforms, allowing attackers to execute arbitrary code, potentially compromising the system. Users are advised to update to the latest fixes to mitigate these risks.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21635878

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/83967

vdb-entryx_refsource_XF

EPSS Score

21% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 3, 2020
👾
Exploit known to exist
Jan 3, 2020
Vulnerability published
May 10, 2013
Vulnerability Reserved
Apr 12, 2013