Buffer overflow in Ibm Lotus_domino

CVE-2013-4068

Buffer overflow in iNotes in IBM Domino 8.5.3 before FP5 IF1 and 9.0 before IF4 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka SPR PTHN9ADPA8.

Vulnerability class: Buffer Overflow

EPSS: 0.090 (92.8th percentile) — read the EPSS interpretation.

Affected products

Ibm Lotus_domino — versions 8.5.3.0, 8.5.3.1, 8.5.3.2
Ibm Lotus_inotes
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

psirt@us.ibm.com (x_refsource_CONFIRM, Patch)
ibm-inotes-cve20134068-bo(86599) (vdb-entry, x_refsource_XF)
psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
psirt@us.ibm.com (x_refsource_CONFIRM, Patch)