An issue was discovered in the Sametime chat feature in the Notes 11.0 - 11.0.1 FP4 clients. An authenticated Sametime chat user could cause Remote Code Execution on another chat client by sending a specially formatted message through chat containing Javascript code.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Hcl_inotes | Hcltech | 11.0.0 (including) | 11.0.0 (including) |
Hcl_inotes | Hcltech | 11.0.1 (including) | 11.0.1 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack1 (including) | 11.0.1-fixpack1 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack2 (including) | 11.0.1-fixpack2 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack3 (including) | 11.0.1-fixpack3 (including) |
Hcl_inotes | Hcltech | 11.0.1-fixpack4 (including) | 11.0.1-fixpack4 (including) |