IBM Lotus Notes 6.0, 6.5, 7.0, and 8.0 signs an unsigned applet when a user forwards an email message to another user, which allows user-assisted remote attackers to bypass Execution Control List (ECL) protection.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Lotus_notes | Ibm | 6.0 | 6.0 |
Lotus_notes | Ibm | 7.0 | 7.0 |
Lotus_notes | Ibm | 6.5 | 6.5 |
Lotus_notes | Ibm | 8.0 | 8.0 |