 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.808112 |
| Category: | General |
| Title: | IBM INotes and Domino Arbitrary Code Execution Vulnerability (Jun 2016) |
| Summary: | IBM Domino is prone to an arbitrary code execution vulnerability. |
| Description: | Summary: IBM Domino is prone to an arbitrary code execution vulnerability. Vulnerability Insight: The flaw is due to an incorrect usage of gcc options. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary code by leveraging the absence of the NX protection mechanism and placing crafted x86 code on the stack, aka SPR KLYH9GGS9W. Affected Software/OS: IBM iNotes and Domino 8.5.x before 8.5.3 FP6 IF3 and 9.x before 9.0.1 FP1 Solution: Upgrade to IBM Domino 8.5.3 FP6 IF3, 9.0.1 FP1, or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2014-0892 CERT/CC vulnerability note: VU#350089 http://www.kb.cert.org/vuls/id/350089 XForce ISS Database: ibm-notes-cve20140892-linux32-rce(91286) https://exchange.xforce.ibmcloud.com/vulnerabilities/91286 |
| Copyright | Copyright (C) 2016 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |