Vulnerabilities > CVE-2017-1130 - Unspecified vulnerability in IBM Inotes

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
ibm
exploit available
metasploit
NVD
Published: 2017-09-05
Updated: 2019-10-03

Summary

IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it would open up many file select dialog boxes which would cause the client hang and have to be restarted. IBM X-Force ID: 121371.

Vulnerable Configurations

Part Description Count
Application
Ibm
14

Exploit-Db

descriptionIBM Notes 8.5.x/9.0.x - Denial of Service (2). CVE-2017-1130. Dos exploit for Multiple platform
fileexploits/multiple/dos/42604.html
idEDB-ID:42604
last seen2017-09-04
modified2017-08-31
platformmultiple
port
published2017-08-31
reporterExploit-DB
sourcehttps://www.exploit-db.com/download/42604/
titleIBM Notes 8.5.x/9.0.x - Denial of Service (2)
typedos

Metasploit

descriptionThis module exploits a vulnerability in the native browser that comes with IBM Lotus Notes. If successful, the browser will crash after viewing the webpage.
idMSF:AUXILIARY/DOS/HTTP/IBM_LOTUS_NOTES2
last seen2020-06-13
modified2020-05-12
published2017-10-10
referenceshttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1130
reporterRapid7
sourcehttps://github.com/rapid7/metasploit-framework/blob/master//modules/auxiliary/dos/http/ibm_lotus_notes2.rb
titleIBM Notes Denial Of Service

Packetstorm

Seebug

bulletinFamilyexploit
descriptionNo description provided by source.
idSSV:96805
last seen2017-11-19
modified2017-11-07
published2017-11-07
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-96805
titleIBM Notes Remote Denial of Service Vulnerability(CVE-2017-1130)

References