CVE-2000-0891 — IBM Lotus Notes vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

2.2%

top 15.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Lotus Notes

Timeline

PublishedJul 21

Latest updateApr 30

Description

A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDibm/lotus_notes5.02

Patches

Patch: www.kb.cert.org ↗Patch: www.kb.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-mwxq-5whq-6gjx: A default ECL in Lotus Notes before 5↗2022-04-30

▶

CVEList

CVE-2000-0891: A default ECL in Lotus Notes before 5↗2002-03-09

▶