Buffer Overflow in IBM Lotus Quickr for Domino
CVE-2013-6748

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Quickr For Domino
Vendor: CVE Published:; 29 January 2014

What is CVE-2013-6748?

A buffer overflow vulnerability exists in the ActiveX control of qp2.cab in IBM Lotus Quickr for Domino versions prior to 8.5.1.42-001b. This flaw can be exploited by remote attackers who craft malicious HTML documents, allowing them to execute arbitrary code on the affected system. Effective protection measures and timely patching are necessary to mitigate the risks associated with this issue. It is critical for users of Lotus Quickr to remain vigilant and apply the latest updates to avoid potential exploitation.

References

http://osvdb.org/102597

vdb-entryx_refsource_OSVDB

http://www.ibm.com/support/docview.wss?uid=swg21662653

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/89864

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 29, 2014
Vulnerability Reserved
Nov 8, 2013