Lucene search
SAINT CorporationSAINT:A7DBB88D453898D128CF63E110524630HistoryFeb 21, 2006 - 12:00 a.m.
Lotus Notes Attachment Viewer UUE file buffer overflow
2006-02-2100:00:00
SAINT Corporation
www.saintcorporation.com
13
0.95 High
EPSS
Percentile
99.1%
Added: 02/21/2006
CVE: CVE-2005-2618
BID: 16576
OSVDB: 23065
Background
Lotus Notes is the client for Lotus Domino servers.
Problem
A buffer overflow in the attachment viewer in the Lotus Notes e-mail client allows command execution when a user opens a specially crafted UUE file.
Resolution
Upgrade to version 6.5.5 or 7.0.1 or higher.
References
<http://secunia.com/secunia_research/2005-36>
Limitations
Exploit works on Lotus Notes 6.5.4. This exploit sends an e-mail to the specified address and requires the user to view the attachment.
Platforms
Windows
Related
saint
saint
Lotus Notes HTML Speed Reader URL buffer overflow
2006-02-17 00:00:00
Lotus Notes HTML Speed Reader URL buffer overflow
2006-02-17 00:00:00
Lotus Notes Attachment Viewer UUE file buffer overflow
2006-02-21 00:00:00
cert
cert
IBM Lotus Notes ZIP file handling buffer overflow
2006-02-15 00:00:00
checkpoint_advisories
checkpoint_advisories
IBM Lotus Notes Attachment Viewer UUE File Handling Buffer Overflow (CVE-2005-2618)
2010-02-25 00:00:00
IBM Lotus Notes Attachment Viewer UUE File Handling Buffer Overflow - ver 2 (CVE-2005-2618)
2015-07-23 00:00:00
IBM Lotus Notes HTML Speed Reader Long URL Buffer Overflow (CVE-2005-2618)
2010-03-22 00:00:00
securityvulns
securityvulns
Secunia Research: Lotus Notes UUE File Handling Buffer Overflow
2006-02-11 00:00:00
Secunia Research: Lotus Notes TAR Reader File Extraction Buffer Overflow
2006-02-11 00:00:00
Secunia Research: Lotus Notes ZIP File Handling Buffer Overflow
2006-02-10 00:00:00
cve
cve
CVE-2005-2618
2005-12-31 05:00:00
nessus
nessus
Lotus Notes < 6.5.5 / 7.0.1 Attachment Handling Vulnerabilities
2006-02-15 00:00:00