Heap-based Buffer Overflow in IBM Domino PDF Filter
CVE-2016-0278

7.8HIGH

Key Information:

Vendor

IBM
Status
Domino
Vendor
CVE Published:
26 June 2016

What is CVE-2016-0278?

A heap-based buffer overflow vulnerability exists in the KeyView PDF filter of IBM Domino, affecting versions prior to 8.5.3 FP6 IF13 and 9.0.1 FP6. This vulnerability can be exploited by remote attackers through specially crafted PDF documents, potentially leading to arbitrary code execution on the targeted system. It is essential for users of IBM Domino to apply the relevant updates to mitigate this security risk and protect their systems from potential exploitation.

References

http://www.securitytracker.com/id/1036091
vdb-entryx_refsource_SECTRACK
http://www.talosintelligence.com/reports/TALOS-2016-0090/
x_refsource_MISC
http://www-01.ibm.com/support/docview.wss?uid=swg21983292
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.