Vulnerabilities > CVE-2009-3038 - Denial-Of-Service vulnerability in Lotus Notes Connector

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
ibm
rim
exploit available

Summary

A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion (RIM) Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of service (Internet Explorer crash) by referencing the control's CLSID in the classid attribute of an OBJECT element.

Vulnerable Configurations

Part Description Count
Application
Ibm
1
Application
Rim
1

Exploit-Db

descriptionLotus note connector for Blackberry Manager 5.0.0.11 ActiveX DoS Vuln. CVE-2009-3038. Dos exploit for windows platform
fileexploits/windows/dos/9517.txt
idEDB-ID:9517
last seen2016-02-01
modified2009-08-25
platformwindows
port
published2009-08-25
reporterFrancis Provencher
sourcehttps://www.exploit-db.com/download/9517/
titleLotus note connector for Blackberry Manager 5.0.0.11 - ActiveX DoS Vuln
typedos