CVE-2018-1437

Sažetak

IBM Notes 8.5 and 9.0 could allow an attacker to execute arbitrary code on the system, caused by an error related to multiple untrusted search path. A local attacker could exploit this vulnerability to DLL hijacking to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 139565.

Reference

http://www.ibm.com/support/docview.wss?uid=swg22014201
http://www.securityfocus.com/bid/103401
http://www.securitytracker.com/id/1040563
https://exchange.xforce.ibmcloud.com/vulnerabilities/139565

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-10-2019 - 23:38

Objavljeno

14-03-2018 - 00:29