CVE-2013-3026

2013-06-1703:29:45

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.294

Percentile

97.0%

JSON

Buffer overflow in the Lotus Quickr for Domino ActiveX control in qp2.cab in IBM Lotus Quickr 8.1 before FP 8.1.0.32-001a, 8.2 before FP 8.2.0.28-001a, and 8.5.1 before FP 8.5.1.39-002a for Domino allows remote attackers to execute arbitrary code via a crafted web site.

Affected configurations

Nvd

Node

ibmlotus_quickr_for_dominoMatch8.1.0

ibmlotus_quickr_for_dominoMatch8.2.0

ibmlotus_quickr_for_dominoMatch8.5.1

VendorProductVersionCPE
ibmlotus_quickr_for_domino8.1.0cpe:2.3:a:ibm:lotus_quickr_for_domino:8.1.0:*:*:*:*:*:*:*
ibmlotus_quickr_for_domino8.2.0cpe:2.3:a:ibm:lotus_quickr_for_domino:8.2.0:*:*:*:*:*:*:*
ibmlotus_quickr_for_domino8.5.1cpe:2.3:a:ibm:lotus_quickr_for_domino:8.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	lotus_quickr_for_domino	8.1.0	cpe:2.3:a:ibm:lotus_quickr_for_domino:8.1.0:::::::*
ibm	lotus_quickr_for_domino	8.2.0	cpe:2.3:a:ibm:lotus_quickr_for_domino:8.2.0:::::::*
ibm	lotus_quickr_for_domino	8.5.1	cpe:2.3:a:ibm:lotus_quickr_for_domino:8.5.1:::::::*