Heap-based Buffer Overflow in IBM Domino PDF Filter
CVE-2016-0277

7.8HIGH

Key Information:

Vendor: IBM
Status: Domino
Vendor: CVE Published:; 26 June 2016

What is CVE-2016-0277?

A heap-based buffer overflow vulnerability exists in the KeyView PDF filter within IBM Domino versions prior to 8.5.3 FP6 IF13 and 9.0.1 FP6. This flaw could allow remote attackers to execute arbitrary code by sending a specially crafted PDF document. It is crucial for users of affected versions to apply necessary updates and patches to mitigate the risk of exploitation, as this vulnerability presents significant security concerns.

References

http://www.securitytracker.com/id/1036091

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21983292

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2016
Vulnerability Reserved
Dec 8, 2015