Vulnerabilities > CVE-2013-3027 - Numeric Errors vulnerability in IBM Lotus Domino 9.0.0.0

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

ibm

CWE-189

critical

NVD

Published: 2013-08-09

Updated: 2017-08-29

Summary

Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to execute arbitrary code via a crafted web page, aka SPR PTHN97XHFW.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Lotus Domino 9.0.0.0	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://www-01.ibm.com/support/docview.wss?uid=swg21644599
http://www-01.ibm.com/support/docview.wss?uid=swg21645503
https://exchange.xforce.ibmcloud.com/vulnerabilities/84381