CVE-2014-0892

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Domino
Vendor: CVE Published:; 23 April 2014

Summary

IBM Notes and Domino 8.5.x before 8.5.3 FP6 IF3 and 9.x before 9.0.1 FP1 on 32-bit Linux platforms use incorrect gcc options, which makes it easier for remote attackers to execute arbitrary code by leveraging the absence of the NX protection mechanism and placing crafted x86 code on the stack, aka SPR KLYH9GGS9W.

References

http://www.kb.cert.org/vuls/id/350089

third-party-advisoryx_refsource_CERT-VN

http://www-01.ibm.com/support/docview.wss?uid=swg21670264

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/91286

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Apr 23, 2014
Vulnerability Reserved
Jan 6, 2014