Lucene search
+L

90 matches found

Tenable Nessus
Tenable Nessus
added 2013/06/20 12:0 a.m.54 views

IBM Notes PNG Integer Overflow

The IBM Notes application installed on the remote Windows host is 8.5 earlier than Fix Pack 4 Interim Fix 1, or 9.0 earlier than Interim Fix 1. It is, therefore, potentially affected by an integer overflow vulnerability. By exploiting this flaw, a remote, unauthenticated attacker could execute...

6.8CVSS6.2AI score0.04687EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/05/31 12:0 a.m.119 views

IBM Notes Single Sign On Password Disclosure

The version of IBM Notes installed on the remote Windows host uses the built-in Single Sign On feature for authentication. Single Sign On is affected by a vulnerability wherein malicious code planted on a user's workstation can be used to reveal the password of an authenticated user. C Tenable...

7CVSS7.2AI score0.00274EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/05/28 12:0 a.m.36 views

IBM Notes Accepts JavaScript Tags Inside HTML Emails

The IBM Notes application installed on the remote Windows host accepts Java applet tags and JavaScript tags inside HTML emails, making it possible to load Java applets and scripts from a remote location. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid66637;...

5.8CVSS5.5AI score0.03787EPSS
Exploits0References5
NVD
NVD
added 2013/05/10 11:42 a.m.19 views

CVE-2013-2977

Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q...

6.8CVSS7.6AI score0.04687EPSS
Exploits0References2
Prion
Prion
added 2013/05/10 11:42 a.m.25 views

Integer overflow

Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q...

6.8CVSS8.3AI score0.04687EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2013/05/10 10:0 a.m.73 views

CVE-2013-2977

CVE-2013-2977 describes an integer overflow in IBM Notes/Lotus Notes PNG image parsing that can allow a remote attacker to execute arbitrary code by convincing a user to view a malicious e‑mail. The root cause is an overflow during PNG parsing (width*4)*height allocation in the image decompressio...

6.8CVSS7.8AI score0.04687EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2013/05/10 10:0 a.m.29 views

CVE-2013-2977

Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q...

7.6AI score0.04687EPSS
Exploits0References2
CERT
CERT
added 2013/05/01 12:0 a.m.31 views

IBM Notes runs arbitrary JAVA and Javascript in emails

Overview IBM Notes parses arbitrary JAVA and Javascript code by default when viewing emails. Description The n.runs AG security advisory states:Notes 8.5.3 does not filter tags inside HTML emails. This can be used to load arbitrary Java applets from remote sources making it an information...

6.9AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2012/08/10 12:0 a.m.71 views

IBM Notes Client Detection

The remote host has IBM Notes installed. IBM Notes formerly IBM Lotus Notes is a business collaboration software client that connects to IBM Notes servers. This software has various capabilities including email, calendaring, and instant messaging. C Tenable Network Security, Inc...

5.5AI score
Exploits0References1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.29 views

POP3 Server type and version

This detects the POP3 Server SPDX-FileCopyrightText: 2005 SecuriTeam Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.10185";...

7AI score
Exploits0
Rows per page
Query Builder