CVE-2009-5033
published 2010-12-16CVE-2009-5033: IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* *" argument sequence for a certain tell command, which allows remote authenticated users…
medium4CVSS 3.1
AVNACLAuSCPINAN
IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* *" argument sequence for a certain tell command, which allows remote authenticated users to obtain access to other users' data via a sync operation, related to storage of the data of multiple users within the same thread.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | lotus_notes_traveler | <= 8.5.0.1 | — |
| ibm | lotus_notes_traveler | — | — |
| ibm | lotus_notes_traveler | — | — |
| ibm | lotus_notes_traveler | — | — |
| ibm | lotus_notes_traveler | — | — |
| ibm | lotus_notes_traveler | — | — |