Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate notes.ini configuration file to notes.exe.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Lotus_notes | Ibm | 6.0 | 6.0 |
Lotus_notes | Ibm | 6.0.1 | 6.0.1 |
Lotus_notes | Ibm | 6.0.2 | 6.0.2 |
Lotus_notes | Ibm | 6.0.3 | 6.0.3 |
Lotus_notes | Ibm | 6.5 | 6.5 |
Lotus_notes | Ibm | 6.5.1 | 6.5.1 |