IBM iNotes DWA9W ActiveX Unspecified Integer Overflow Vulnerability
Gravité: : Critique
Identifiant(s) CVE: : 2013-3027
Date du conseil: 21 juillet 2015
Description
Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to execute arbitrary code via a crafted web page, aka SPR PTHN97XHFW.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1005822
Trend Micro Deep Security DPI Rule Name: 1005822 - Restrict IBM iNotes UploadControl ActiveX Controls
Affected software and version:
- ibm lotus_domino 9.0.0.0