CVE Vulnerabilities

CVE-2004-0480

Published: Dec 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Argument injection vulnerability in IBM Lotus Notes 6.0.3 and 6.5 allows remote attackers to execute arbitrary code via a notes: URI that uses a UNC network share pathname to provide an alternate notes.ini configuration file to notes.exe.

Affected Software

Name Vendor Start Version End Version
Lotus_notes Ibm 6.0 6.0
Lotus_notes Ibm 6.0.1 6.0.1
Lotus_notes Ibm 6.0.2 6.0.2
Lotus_notes Ibm 6.0.3 6.0.3
Lotus_notes Ibm 6.5 6.5
Lotus_notes Ibm 6.5.1 6.5.1

References