Security Bulletin: IBM Lotus Notes URL Command Injection Remote Code Execution Vulnerability (CVE-2012-2174)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  notes psirtics psirthigh
0 Comments | 3,698 Visits
A security vulnerability exists in the IBM Lotus Notes URL handler which permits remote code execution. Malicious URLs could allow remote attackers to execute arbitrary code on installations of Lotus Notes.
Affected product(s): IBM Lotus Notes
Affected version(s): 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3
Refer to the following reference URLs for remediation and additional vulnerability details.
X-Force Database: http://xforce.iss.net/xforce/xfdb/75320