Lucene search

MitreCVE-2010-0276

HistoryJan 09, 2010 - 6:30 p.m.

CVE-2010-0276

2010-01-0918:30:01

mitre

web.nvd.nist.gov

ibm lotus inotes

domino web access

dwa

cve-2010-0276

nvd

security

vulnerability

exploit

ibm

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

69.6%

JSON

IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle navigation of the “Try Lotus iNotes anyway” link from the page that reports use of an unsupported browser, which has unspecified impact and attack vectors, aka SPR LSHR7TBMQU.

Affected configurations

Nvd

Node

ibmdomino_web_access

ibmlotus_inotes

AND

ibmlotus_dominoMatch8.0.2.3

VendorProductVersionCPE
ibmdomino_web_access*cpe:2.3:a:ibm:domino_web_access:*:*:*:*:*:*:*:*
ibmlotus_inotes*cpe:2.3:a:ibm:lotus_inotes:*:*:*:*:*:*:*:*
ibmlotus_domino8.0.2.3cpe:2.3:a:ibm:lotus_domino:8.0.2.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	domino_web_access	*	cpe:2.3:a:ibm:domino_web_access::::::::
ibm	lotus_inotes	*	cpe:2.3:a:ibm:lotus_inotes::::::::
ibm	lotus_domino	8.0.2.3	cpe:2.3:a:ibm:lotus_domino:8.0.2.3:::::::*

References

secunia.com/advisories/38026

www-01.ibm.com/support/docview.wss?uid=swg27017776

www.securityfocus.com/bid/37675

www.vupen.com/english/advisories/2010/0077

exchange.xforce.ibmcloud.com/vulnerabilities/55473

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

69.6%

JSON

Related for CVE-2010-0276