CVE-2008-0862

2008-02-2101:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.004

Percentile

72.8%

JSON

IBM Lotus Notes 6.0, 6.5, 7.0, and 8.0 signs an unsigned applet when a user forwards an email message to another user, which allows user-assisted remote attackers to bypass Execution Control List (ECL) protection.

References

secunia.com/advisories/29031

www-1.ibm.com/support/docview.wss?uid=swg21257250

www.vupen.com/english/advisories/2008/0600/references