3 matches found
CVE-2004-0480
Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate notes.ini configuration file to notes.exe...
CVE-2004-0480
Affected software: IBM Lotus Notes 6.0.3–6.5. Vulnerability: argument injection via a notes: URI that uses a UNC network share path to supply an alternate notes.ini for notes.exe, enabling remote code execution. Root cause (as described): insufficient argument filtering on the URI handler, allowi...
CVE-2004-0480
Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate notes.ini configuration file to notes.exe...