Showing 1 - 2 of 2

CVE-2012-2174

Status Candidate

Overview

The URL handler in IBM Lotus Notes 8.x before 8.5.3 FP2 allows remote attackers to execute arbitrary code via a crafted notes:// URL.

IBM Lotus Notes Client URL Handler Command Injection: Posted Dec 24, 2012; Authored by Moritz Jodeit, Sean de Regge, juan vazquez | Site metasploit.com; This Metasploit modules exploits a command injection vulnerability in the URL handler for for the IBM Lotus Notes Client <= 8.5.3. The registered handler can be abused with an specially crafted notes:// URL to execute arbitrary commands with also arbitrary arguments. This Metasploit module has been tested successfully on Windows XP SP3 with IE8, Google Chrome 23.0.1271.97 m and IBM Lotus Notes Client 8.5.2.; tags | exploit, arbitrary; systems | windows; advisories | CVE-2012-2174, OSVDB-83063; SHA-256 | 7a3b0f8cdedb3c1112e263b6a63066bb8c62253df93e1569505b5ae265a933a9; Download | Favorite | View

Zero Day Initiative Advisory 12-154: Posted Aug 23, 2012; Authored by Tipping Point | Site zerodayinitiative.com; Zero Day Initiative Advisory 12-154 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus Notes. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within notes.exe. When handling URLs, it is possible to inject the -RPARAMS command line argument into the call to notes.exe, which will then launch rcplauncher.exe. Including the java -vm command will allow for the attacker to execute code under the context of the process.; tags | advisory, java, remote, arbitrary; advisories | CVE-2012-2174; SHA-256 | b7bcdf06670bcf0bb125d88044d00d71075aeb8b81da424ae63e97db20de1a7d; Download | Favorite | View

Page 1 of 1 Back 1 Next