Lucene search
MitreCVE-2008-0862HistoryFeb 21, 2008 - 1:44 a.m.
CVE-2008-0862
2008-02-2101:44:00
CWE-264
mitre
web.nvd.nist.gov
21
ibm
lotus notes
vulnerability
applet
signing
email
ecl
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.004
Percentile
72.8%
IBM Lotus Notes 6.0, 6.5, 7.0, and 8.0 signs an unsigned applet when a user forwards an email message to another user, which allows user-assisted remote attackers to bypass Execution Control List (ECL) protection.
Affected configurations
Node
ibmlotus_notesMatch6.0
ORibmlotus_notesMatch6.5
ORibmlotus_notesMatch7.0
ORibmlotus_notesMatch8.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | lotus_notes | 6.0 | cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:* |
| ibm | lotus_notes | 6.5 | cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:* |
| ibm | lotus_notes | 7.0 | cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:* |
| ibm | lotus_notes | 8.0 | cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-0862
2008-02-21 01:00:00
nvd
nvd
CVE-2008-0862
2008-02-21 01:44:00
prion
prion
Design/Logic Flaw
2008-02-21 01:44:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.004
Percentile
72.8%
Related for CVE-2008-0862