Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Lotus Notes Traveler  Security Vulnerabilities
CVE-2010-4551
IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by omitting the Internet ID field in the person document, and then using an Apple device to (1) accept or (2) decline an invitation.
CVSS Score
4.0
EPSS Score
0.004
Published
2010-12-16
CVE-2010-4552
Memory leak in IBM Lotus Notes Traveler before 8.5.1.1 allows remote attackers to cause a denial of service (memory consumption and daemon outage) by sending many embedded objects in e-mail messages for iPhone clients.
CVSS Score
5.0
EPSS Score
0.006
Published
2010-12-16
CVE-2010-4553
An unspecified Domino API in IBM Lotus Notes Traveler before 8.5.1.1 does not properly handle MIME types, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
CVSS Score
5.0
EPSS Score
0.006
Published
2010-12-16
CVE-2009-5033
IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* *" argument sequence for a certain tell command, which allows remote authenticated users to obtain access to other users' data via a sync operation, related to storage of the data of multiple users within the same thread.
CVSS Score
4.0
EPSS Score
0.002
Published
2010-12-16
CVE-2009-5034
IBM Lotus Notes Traveler before 8.5.0.2 allows remote authenticated users to cause a denial of service (memory consumption and daemon crash) by syncing a large volume of data, related to the launch of a new process to handle the data while the previous process is still operating on the data.
CVSS Score
4.0
EPSS Score
0.005
Published
2010-12-16
CVE-2009-5035
The Nokia client in IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle multiple outgoing e-mail messages between sync operations, which might allow remote attackers to read communications intended for other recipients by examining appended messages.
CVSS Score
4.3
EPSS Score
0.002
Published
2010-12-16
CVE-2009-5036
traveler.exe in IBM Lotus Notes Traveler before 8.0.1.3 CF1 allows remote authenticated users to cause a denial of service (daemon crash) via a malformed invitation document in a sync operation.
CVSS Score
4.0
EPSS Score
0.004
Published
2010-12-16
CVE-2010-4544
Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
4.3
EPSS Score
0.003
Published
2010-12-16
CVE-2010-4545
IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (resource consumption and sync outage) by syncing a large volume of data.
CVSS Score
4.0
EPSS Score
0.004
Published
2010-12-16
CVE-2010-4546
IBM Lotus Notes Traveler before 8.5.1.2 does not reject an attachment download request for an e-mail message with a Prevent Copy attribute, which allows remote authenticated users to bypass intended access restrictions via this request.
CVSS Score
4.0
EPSS Score
0.001
Published
2010-12-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved