Lucene search

K
saintSAINT CorporationSAINT:BDC18932840B22081F128423837AF308
HistoryJan 30, 2008 - 12:00 a.m.

Lotus Notes MIF attachment viewer buffer overflow

2008-01-3000:00:00
SAINT Corporation
download.saintcorporation.com
23

EPSS

0.883

Percentile

98.7%

Added: 01/30/2008
CVE: CVE-2007-5909
BID: 26175
OSVDB: 40791

Background

Lotus Notes is the client for Lotus Domino servers.

Problem

A buffer overflow in the KeyView Viewer included in Lotus Notes allows command execution when a user views a specially crafted Frame Maker Interchange File (MIF) attachment.

Resolution

Upgrade to Lotus Notes 7.0.3 or higher.

References

[http://www-1.ibm.com/support/docview.wss?rs=899&amp;uid=swg21271111 ](<http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111
>)

Limitations

Exploit works on Lotus Notes 7.0.2 and requires a user to view a MIF attachment.

Platforms

Windows 2000
Windows XP

EPSS

0.883

Percentile

98.7%

Related for SAINT:BDC18932840B22081F128423837AF308