CVE-2010-1608

CWE-119Buffer Overflow3 documents3 sources
Severity
10.0CRITICAL
EPSS
10.4%
top 6.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Notes
Timeline
PublishedApr 29
Latest updateMay 17

Description

Stack-based buffer overflow in IBM Lotus Notes 8.5 and 8.5fp1, and possibly other versions, allows remote attackers to execute arbitrary code via unknown attack vectors, as demonstrated by the vd_ln module in VulnDisco 9.0. NOTE: as of 20100222, this disclosure has no actionable information. However, because the VulnDisco author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDibm/lotus_notes8.5, 8.5.1, 8.5.1.1+2

🔴Vulnerability Details

2
GHSA
GHSA-h2rx-x3c4-3hrp: Stack-based buffer overflow in IBM Lotus Notes 82022-05-17
CVEList
CVE-2010-1608: Stack-based buffer overflow in IBM Lotus Notes 82010-04-29
CVE-2010-1608 (CRITICAL CVSS 10) | Stack-based buffer overflow in IBM | cvebase.io