CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
92.4%
Added: 01/03/2008
CVE: CVE-2007-5910
BID: 26175
OSVDB: 40783
Lotus Notes is the client for Lotus Domino servers.
A buffer overflow in the KeyView Viewer included in Lotus Notes allows command execution when a user views a specially crafted WordPerfect (WPD) attachment.
Upgrade to Lotus Notes 7.0.3 or higher.
[http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111 ](<http://www-1.ibm.com/support/docview.wss?rs=899&uid=swg21271111
>)
Exploit works on Lotus Notes 7.0.2 and requires a user to view the WPD attachment.
Windows