IBM iNotes DWA9W ActiveX Unspecified Integer Overflow Vulnerability
Severity: : Critical
CVE Kennungen: : 2013-3027
Advisory Date: 21 lipca 2015
DESCRIPTION
Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino 9.0 before IF3 allows remote attackers to execute arbitrary code via a crafted web page, aka SPR PTHN97XHFW.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005822
Trend Micro Deep Security DPI Rule Name: 1005822 - Restrict IBM iNotes UploadControl ActiveX Controls
AFFECTED SOFTWARE AND VERSION:
- ibm lotus_domino 9.0.0.0