Signature Detail
Short Name |
HTTP:STC:DL:LOTUS-URL-RCE |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
IBM Lotus Notes URL Handler Command Execution |
Release Date |
2012/08/27 |
Update Number |
2178 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: IBM Lotus Notes URL Handler Command Execution
This signature detects attempts to exploit a known vulnerability against IBM Lotus Notes. A successful attack can lead to arbitrary remote code execution within the context of the affected application.
Extended Description
IBM Lotus Notes is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. IBM Lotus Notes versions 8.0.2, 8.5, 8.5.1, 8.5.2, and 8.5.3 are affected.
Affected Products
- IBM Lotus Notes 8.0.2
- IBM Lotus Notes 8.0.2.0
- IBM Lotus Notes 8.0.2.1
- IBM Lotus Notes 8.0.2.2
- IBM Lotus Notes 8.0.2.3
- IBM Lotus Notes 8.0.2.4
- IBM Lotus Notes 8.0.2.5
- IBM Lotus Notes 8.0.2.6
- IBM Lotus Notes 8.5
- IBM Lotus Notes 8.5.0.0
- IBM Lotus Notes 8.5.0.1
- IBM Lotus Notes 8.5.1
- IBM Lotus Notes 8.5.1
- IBM Lotus Notes 8.5.1.0
- IBM Lotus Notes 8.5.1.1
- IBM Lotus Notes 8.5.1.2
- IBM Lotus Notes 8.5.1.3
- IBM Lotus Notes 8.5.1.4
- IBM Lotus Notes 8.5.1.5
- IBM Lotus Notes 8.5.2
- IBM Lotus Notes 8.5.2.0
- IBM Lotus Notes 8.5.2.1
- IBM Lotus Notes 8.5.2.2
- IBM Lotus Notes 8.5.2.3
- IBM Lotus Notes 8.5.3
References
- BugTraq: 54070
- CVE: CVE-2012-2174