CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-3575

Stack-based buffer overflow in the NSFComputeEvaluateExt function in Nnotes.dll in IBM Lotus Domino 8.5.2 allows remote authenticated users to execute arbitrary code via a long tHPRAgentName parameter in an fmHttpPostRequest OpenForm action to WebAdmin.nsf.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.413

EPSS Ranking 97.3%

CVSS Severity

CVSS v2 Score 9.0

References

http://www.research.reversingcode.com/exploits/IBMLotusDomino_StackOverflowPoC
http://www.research.reversingcode.com/index.php/advisories/73-ibm-ssd-1012211
http://www.securityfocus.com/bid/49705
https://exchange.xforce.ibmcloud.com/vulnerabilities/69802
http://www.research.reversingcode.com/exploits/IBMLotusDomino_StackOverflowPoC
http://www.research.reversingcode.com/index.php/advisories/73-ibm-ssd-1012211
http://www.securityfocus.com/bid/49705
https://exchange.xforce.ibmcloud.com/vulnerabilities/69802

Products affected by CVE-2011-3575

Ibm » Lotus Domino » Version: 8.5.2

cpe:2.3:a:ibm:lotus_domino:8.5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-3575

Products

Pricing

Contact Us