Search Results | AttackerKB

Show filters

Topics 19 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

19 Total Results

Displaying 11-19 of 19

Attacker Value

Unknown

CVE-2012-4846

Disclosure Date: December 19, 2012 (last updated October 05, 2023)

IBM Lotus Notes 8.5.x before 8.5.3 FP3 does not include the HTTPOnly flag in a Set-Cookie header for a web-application cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, aka SPRs JMAS7TRNLN and SRAO8U3Q68.

0

Attacker Value

Unknown

CVE-2012-2174

Disclosure Date: June 20, 2012 (last updated October 04, 2023)

The URL handler in IBM Lotus Notes 8.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a crafted notes:// URL.

0

Attacker Value

Unknown

CVE-2011-1218

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Buffer overflow in kvarcve.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .zip attachment, aka SPR PRAD8E3NSP. NOTE: some of these details are obtained from third party information.

0

Attacker Value

Unknown

CVE-2011-1213

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted header in a .lzh attachment that triggers a stack-based buffer overflow, aka SPR PRAD88MJ2W.

0

Attacker Value

Unknown

CVE-2011-1214

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ.

0

Attacker Value

Unknown

CVE-2011-1512

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Heap-based buffer overflow in xlssr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a malformed BIFF record in a .xls Excel spreadsheet attachment, aka SPR PRAD8E3HKR.

0

Attacker Value

Unknown

CVE-2011-1217

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Buffer overflow in kpprzrdr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted .prz attachment. NOTE: some of these details are obtained from third party information.

0

Attacker Value

Unknown

CVE-2011-1215

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Stack-based buffer overflow in mw8sr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a Microsoft Office document attachment, aka SPR PRAD8823ND.

0

Attacker Value

Unknown

CVE-2011-1216

Disclosure Date: May 31, 2011 (last updated October 04, 2023)

Stack-based buffer overflow in assr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via crafted tag data in an Applix spreadsheet attachment, aka SPR PRAD8823A7.

0