Vulnerabilities > CVE-2011-2884 - Denial of Service vulnerability and Unspecified vulnerability in IBM Lotus Symphony 3.0.0/3.0.0.1/3.0.0.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple unspecified vulnerabilities in IBM Lotus Symphony 3 before FP3 have unknown impact and attack vectors, related to "critical security vulnerability issues."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
Nessus
NASL family | Windows |
NASL id | LOTUS_SYMPHONY_3_0_FP3.NASL |
description | The version of IBM Lotus Symphony was found to be less than 3.0 Fix Pack 3. Such versions are affected by multiple vulnerabilities: - Multiple unspecified vulnerabilities. (CVE-2011-2884) - Opening a .doc document with a user defined toolbar can cause an application crash. (CVE-2011-2885) - Opening a .docx document with empty bullet styles for parent bullets will cause an application crash. (CVE-2011-2886) - Opening in DataPilot a large .xls file that contains an invalid |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 59036 |
published | 2012-05-08 |
reporter | This script is Copyright (C) 2012-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/59036 |
title | IBM Lotus Symphony < 3.0 Fix Pack 3 Multiple Vulnerabilities |
code |
|
References
- http://secunia.com/advisories/45271
- http://www.ibm.com/software/lotus/symphony/buzz.nsf/web_DisPlayPlugin?open&unid=9717F6F587AAA939852578D300404BCF&category=announcements
- http://www.ibm.com/software/lotus/symphony/idcontents/releasenotes/en/readme_fixpack3_standalone_long.htm
- http://www.ibm.com/support/docview.wss?uid=swg21505448
- http://www.osvdb.org/73988
- http://www.securityfocus.com/bid/48936
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68892
- https://www-304.ibm.com/jct03001c/software/lotus/symphony/idcontents/releasenotes/en/readme_embedded_in_fixpack3_long.htm