Below are links to nine newly published or revised technotes on security related issues that have been addressed in Notes and/or Domino 7.0.3.
- Lotus Domino IMAP buffer overflow vulnerability (#1270623)
- Potential security issue with Domino Certificate Authority (CA) process commands (#1261095)
- Potential vulnerability in Notes/Domino memory mapped files (#1257030)
- Lotus Notes buffer overflow vulnerability with HTML message (#1272930)
- Potential Notes workstation Execution Control List (ECL) security vulnerability (#1270884)
- Evaluate LotusScript method returns unexpected results (#1273266)
- Buffer overflow vulnerability in Lotus Notes file viewers (multiple file formats) (#1272836)
- Buffer overflow vulnerability in Lotus Notes file viewers (.wpd, .sam, .doc, and .mif ) (#1271111)
- Potential denial of service in Lotus Notes due to malformed SMTP message (#1271957)
Note: IBM Lotus now uses version 2 of the Common Vulnerability Scoring System (CVSS v2) to provide a security rating for potential vulnerabilties in our software. Additional information on CVSS v2 can be found at the following link: http://www.first.org/cvss/cvss-guide.html
Joy Freeman | 23 October 2007 11:58:29 AM ET | | Comments (0)
