90 matches found
IBM Notes PNG Integer Overflow
The IBM Notes application installed on the remote Windows host is 8.5 earlier than Fix Pack 4 Interim Fix 1, or 9.0 earlier than Interim Fix 1. It is, therefore, potentially affected by an integer overflow vulnerability. By exploiting this flaw, a remote, unauthenticated attacker could execute...
IBM Notes Single Sign On Password Disclosure
The version of IBM Notes installed on the remote Windows host uses the built-in Single Sign On feature for authentication. Single Sign On is affected by a vulnerability wherein malicious code planted on a user's workstation can be used to reveal the password of an authenticated user. C Tenable...
IBM Notes Accepts JavaScript Tags Inside HTML Emails
The IBM Notes application installed on the remote Windows host accepts Java applet tags and JavaScript tags inside HTML emails, making it possible to load Java applets and scripts from a remote location. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid66637;...
CVE-2013-2977
Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q...
Integer overflow
Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q...
CVE-2013-2977
CVE-2013-2977 describes an integer overflow in IBM Notes/Lotus Notes PNG image parsing that can allow a remote attacker to execute arbitrary code by convincing a user to view a malicious e‑mail. The root cause is an overflow during PNG parsing (width*4)*height allocation in the image decompressio...
CVE-2013-2977
Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and 9.x before 9.0 Interim Fix 1 on Windows, and 8.5.x before 8.5.3 FP5 and 9.x before 9.0.1 on Linux, allows remote attackers to execute arbitrary code via a malformed PNG image in a previewed e-mail message, aka SPR NPEI96K82Q...
IBM Notes runs arbitrary JAVA and Javascript in emails
Overview IBM Notes parses arbitrary JAVA and Javascript code by default when viewing emails. Description The n.runs AG security advisory states:Notes 8.5.3 does not filter tags inside HTML emails. This can be used to load arbitrary Java applets from remote sources making it an information...
IBM Notes Client Detection
The remote host has IBM Notes installed. IBM Notes formerly IBM Lotus Notes is a business collaboration software client that connects to IBM Notes servers. This software has various capabilities including email, calendaring, and instant messaging. C Tenable Network Security, Inc...
POP3 Server type and version
This detects the POP3 Server SPDX-FileCopyrightText: 2005 SecuriTeam Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.10185";...