CVE-2011-1213
CVE-2011-1213
Integer underflow in lzhsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted header in a .lzh attachment that triggers a stack-based buffer overflow, aka SPR PRAD88MJ2W.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/17448unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=904http://secunia.com/advisories/44624http://securityreason.com/securityalert/8285https://exchange.xforce.ibmcloud.com/vulnerabilities/67620https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14634http://www.ibm.com/support/docview.wss?uid=swg21500034http://www.securityfocus.com/bid/47962