6.3

CVE-2007-5700

The Evaluate LotusScript method in IBM Lotus Domino before 7.0.3 uses an incorrect security context for @ formula commands in some circumstances, which might allow remote authenticated users to gain privileges and obtain sensitive information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmLotus Domino Version6.5.5
IbmLotus Domino Version6.5.5 Editionfp1
IbmLotus Domino Version6.5.5 Editionfp2
IbmLotus Domino Version6.5.5 Editionfp3
IbmLotus Domino Version6.5.6
IbmLotus Domino Version6.5.6 Editionfp1
IbmLotus Domino Version7.0
IbmLotus Domino Version7.0.2
IbmLotus Domino Version7.0.2 Editionfp1
IbmLotus Domino Version7.0.2 Editionfp2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.19% 0.638
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.3 6.8 6.9
AV:N/AC:M/Au:S/C:C/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/27321
Patch
Vendor Advisory
http://www.securityfocus.com/bid/26176
Patch
http://www.vupen.com/english/advisories/2007/3598
http://osvdb.org/40951
http://www-1.ibm.com/support/docview.wss?uid=swg21273266
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/37369