Vulnerability in Ibm Lotus_notes_traveler

CVE-2010-4546

IBM Lotus Notes Traveler before 8.5.1.2 does not reject an attachment download request for an e-mail message with a Prevent Copy attribute, which allows remote authenticated users to bypass intended access restrictions via this request.

EPSS: 0.001 (33.4th percentile) — read the EPSS interpretation.

Affected products

Ibm Lotus_notes_traveler — versions 8.5.0.0, 8.5.0.1, 8.0
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (x_refsource_CONFIRM)
LO49840 (vendor-advisory, x_refsource_AIXAPAR)