Heap-Based Buffer Overflow in IBM Domino PDF Filter
CVE-2016-0279

7.8HIGH

Key Information:

Vendor: IBM
Status: Domino
Vendor: CVE Published:; 26 June 2016

What is CVE-2016-0279?

A heap-based buffer overflow vulnerability exists in the KeyView PDF filter used by IBM Domino, which could allow remote attackers to execute arbitrary code through specially crafted PDF documents. This issue affects various versions of IBM Domino, prior to specified fix packs, enabling potential exploitation in systems where untrusted PDF files are processed. Organizations using these affected versions should prioritize updating to the latest releases to mitigate this risk.

References

http://www.securitytracker.com/id/1036091

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21983292

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2016
Vulnerability Reserved
Dec 8, 2015