Vulnerabilities > CVE-2005-1442 - Local NOTES.INI Buffer Overflow vulnerability in IBM Lotus Notes

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

ibm

NVD

Published: 2005-05-03

Updated: 2017-07-11

Summary

Buffer overflow in the Lotus Notes client for Domino 6.5 before 6.5.4 and 6.0 before 6.0.5 allows local users to cause a denial of service (client crash) and possibly execute arbitrary code via the NOTES.INI file.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Lotus Notes 6.0 IBM Lotus Notes 6.0.1 IBM Lotus Notes 6.0.2 IBM Lotus Notes 6.0.3 IBM Lotus Notes 6.0.4 IBM Lotus Notes 6.5 IBM Lotus Notes 6.5.1 IBM Lotus Notes 6.5.2 IBM Lotus Notes 6.5.3	9

References

http://secunia.com/advisories/1013841
http://www.osvdb.org/15367
http://www.securityfocus.com/bid/13447
http://www-1.ibm.com/support/docview.wss?rs=463&uid=swg21202526
https://exchange.xforce.ibmcloud.com/vulnerabilities/20044