APP: IBM Lotus Notes HTML Message Handling Buffer Overflow
This signature detects attempts to exploit a known vulnerability in IBM Lotus Notes. It is a result of insufficient boundary checking while parsing HTML formatted email. A remote attacker can exploit this vulnerability by persuade the target user to perform certain operation upon a crafted email message, potentially causing arbitrary code to be injected and executed in the security context of the current user. In an attack case where code injection is not successful, all instances of the vulnerable IBM Lotus Notes application will terminate.
Extended Description
IBM Lotus Notes is prone to a buffer-overflow vulnerability because the application fails to adequately perform boundary checks on user-supplied data. This issue occurs in the 'nnotes.dll' dynamic linked library. Successfully exploiting this issue could allow attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
Ibm lotus_notes
Short Name
APP:IBM:LOTUS-NOTES-HTML-OF
Severity
Major
Recommended
False
Recommended Action
None
Category
APP
Keywords
Buffer CVE-2007-4222 HTML Handling IBM Lotus Message Notes Overflow bid:26200
Release Date
07/21/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3703
False Positive
Unknown
Vendors
Ibm
CVSS Score
9.3