Lucene search
HistoryFeb 13, 2014 - 12:00 a.m.
IBM Lotus Quickr ActiveX Stack Buffer Overflow Remote Code Execution Vulnerability
EPSS
0.202
Percentile
96.4%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Quickr for Domino. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within an ActiveX control included in QP2.dll. The specific flaw is a stack buffer overflow in a vulnerable function in the control. By passing an overly long value into a property, and then triggering the function, an attacker may execute arbitrary code in the context of the current process.
Related
seebug
seebug
IBM Lotus Quickr for Domino ActiveXζ§δ»ΆηΌε²εΊζΊ’εΊζΌζ΄
2014-02-11 00:00:00
prion
prion
Buffer overflow
2014-01-29 05:37:00
Buffer overflow
2014-01-29 05:37:00
cve
cve
CVE-2013-6749
2014-01-29 05:37:02
CVE-2013-6748
2014-01-29 05:37:02
nvd
nvd
CVE-2013-6749
2014-01-29 05:37:02
CVE-2013-6748
2014-01-29 05:37:02
cvelist
cvelist
CVE-2013-6748
2014-01-29 02:00:00
CVE-2013-6749
2014-01-29 02:00:00
nessus
nessus
Lotus Quickr for Domino qp2.dll ActiveX Control Unspecified Stack Overflow
2014-02-19 00:00:00