Lotus Notes@5.0.3 Security Vulnerabilities and Issues — Lotus Notes@5.0.3 CVE List

Lucene search

IbmLotus Notes5.0.3

11 matches found

CVE•added 2002/10/10 4:0 a.m.•1067 views

CVE-2002-0370

Buffer overflow in the ZIP capability for multiple products allows remote attackers to cause a denial of service or execute arbitrary code via ZIP files containing entries with long filenames, including (1) Microsoft Windows 98 with Plus! Pack, (2) Windows XP, (3) Windows ME, (4) Lotus Notes R4 thr...

7.5CVSS7.9AI score0.32271EPSS

CVE•added 2009/03/18 3:30 p.m.•123 views

CVE-2008-4564

Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK 10.4 and earlier, as used in IBM Lotus Notes, Symantec Mail Security (SMS) products, Symantec BrightMail Appliance products, and Symantec Data Loss Prevention (DLP) products, allows remote attackers to execute arbitrary code via a...

9.3CVSS7.7AI score0.54246EPSS

CVE•added 2011/05/31 8:55 p.m.•70 views

CVE-2011-1213

Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted header in a .lzh attachment that triggers a stack-based buffer overflow, aka SPR PRAD88MJ2W.

9.3CVSS7.4AI score0.80847EPSS

CVE•added 2006/11/10 1:7 a.m.•56 views

CVE-2006-5835

The Notes Remote Procedure Call (NRPC) protocol in IBM Lotus Notes Domino before 6.5.5 FP2 and 7.x before 7.0.2 does not require authentication to perform user lookups, which allows remote attackers to obtain the user ID file.

5CVSS9.4AI score0.02018EPSS

CVE•added 2011/05/31 8:55 p.m.•55 views

CVE-2011-1512

Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR.

9.3CVSS7.9AI score0.18231EPSS

CVE•added 2011/05/31 8:55 p.m.•50 views

CVE-2011-1217

Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .prz attachment. NOTE: some of these details are obtained from third party information.

9.3CVSS7.7AI score0.11061EPSS

CVE•added 2011/05/31 8:55 p.m.•50 views

CVE-2011-1218

Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information.

9.3CVSS7.7AI score0.08458EPSS

CVE•added 2011/05/31 8:55 p.m.•47 views

CVE-2011-1214

Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ.

9.3CVSS7.9AI score0.15959EPSS

CVE•added 2011/05/31 8:55 p.m.•43 views

CVE-2011-1216

Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7.

9.3CVSS8AI score0.18883EPSS

CVE•added 2009/09/01 4:30 p.m.•42 views

CVE-2009-3037

Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary cod...

9.3CVSS7.8AI score0.16842EPSS

CVE•added 2001/01/09 5:0 a.m.•36 views

CVE-2000-1138

Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected.

7.5CVSS6.9AI score0.00467EPSS