IBM Notes on Windows is vulnerable to a DLL hijacking attack which could result in code execution.
CVE(s): CVE-2018-1435
Affected product(s) and affected version(s):
IBM Notes 9.0.1 to 9.0.1 FP10 IF1
IBM Notes 9.0 to 9.0 IF4
IBM Notes 8.5.3 to 8.5.3 FP6 IF15
IBM Notes 8.5.2 to 8.5.2 FP4 IF3
IBM Notes 8.5.1. to 8.5.1 FP5 IF3
IBM Notes 8.5 release
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=swg22014198
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/139563
The post IBM Security Bulletin: IBM Notes Remote Code Execution Vulnerability (CVE-2018-1435) appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2FwC01e
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.