[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255227

 
 

909

 
 

198741

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-0275Date: (C)2010-01-09   (M)2023-12-22


Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
BID-37675
SECUNIA-38026
ADV-2010-0077
domino-script-command-unspecified(55471)
http://www-01.ibm.com/support/docview.wss?uid=swg27017776

CPE    19
cpe:/a:ibm:lotus_inotes:229.211
cpe:/a:ibm:lotus_inotes:229.101
cpe:/a:ibm:lotus_inotes:229.221
cpe:/a:ibm:lotus_inotes:229.111
...

© SecPod Technologies