Heap-based Buffer Overflow Vulnerability in IBM Domino PDF Filter
CVE-2016-0301

7.8HIGH

Key Information:

Vendor: IBM
Status: Domino
Vendor: CVE Published:; 26 June 2016

What is CVE-2016-0301?

The vulnerability arises from a heap-based buffer overflow within the KeyView PDF filter in IBM Domino products. This flaw can be exploited by remote attackers through specially crafted PDF documents, enabling them to execute arbitrary code on the affected systems. The impacts are significant as they diverge from other known vulnerabilities, such as CVE-2016-0277, CVE-2016-0278, and CVE-2016-0279, highlighting the need for prompt security updates and precautions.

References

http://www.securitytracker.com/id/1036091

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21983292

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2016
Vulnerability Reserved
Dec 8, 2015