CVE-2011-1214

CWE-119Buffer Overflow4 documents4 sources
Severity
9.3CRITICAL
EPSS
18.6%
top 4.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Notes
Timeline
PublishedMay 31
Latest updateMay 17

Description

Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDibm/lotus_notes8.5.2.2+100

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-fvjx-3cwq-jm8m: Stack-based buffer overflow in rtfsr2022-05-17
CVEList
CVE-2011-1214: Stack-based buffer overflow in rtfsr2011-05-31