• IDP Daily Update #1254
  posted: 09/05/08
  
• NSM Daily Update #1254
  posted: 09/05/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1254
  posted: 09/05/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1252
  posted: 09/05/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 09/05/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: Lotus Notes Email Embedded Code Execution Vulnerability

Severity: HIGH

Description:

It is possible for a remote attacker to cause malicious code to be executed by embedding in a Lotus Notes object, which is included in an email message targeted to a Lotus Notes user. Opening the email message or viewing the message from a preview pane will execute the code.

Lotus Notes allows users to include objects within an email message. Once an object (ie: ActiveX object) is added to the email message, the properties of the object must be modified to enable 'run the object when the document is read'. The attacker could then embed specific code in the 'Initialize' section of the events pane which is linked to the object. The specific code should include the actions an attacker would like to take on the target recipient's system, this will require an attacker to be familiar with Lotus.

Upon sending this specially crafted email message, the recipient reading the email message or viewing the message from a preview pane will execute the code.

Successful exploitation of this vulnerability could lead to complete comprimise of the host.

Affected Products:

• Lotus Notes R5 Client 4.6.0

References:

• IBM: Lotus Notes R5 Client
• Lotus: Q&A: BugTraq "Lotus Notes Stored Form Vulnerability"