Ibm

Domino

27 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2016-2938

  • EPSS 0.28%
  • Veröffentlicht 01.02.2017 20:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

8.1

CVE-2016-0304

  • EPSS 1.11%
  • Veröffentlicht 29.06.2016 01:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Java Console in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass authentication and possibly execute arbitrary code ...

7.8

CVE-2016-0301

  • EPSS 1.92%
  • Veröffentlicht 26.06.2016 14:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2016-0277, CVE-20...

7.8

CVE-2016-0279

  • EPSS 1.86%
  • Veröffentlicht 26.06.2016 14:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2016-0277, CVE-20...

7.8

CVE-2016-0278

  • EPSS 1.94%
  • Veröffentlicht 26.06.2016 14:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2016-0277, CVE-20...

7.8

CVE-2016-0277

  • EPSS 1.86%
  • Veröffentlicht 26.06.2016 14:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2016-0278, CVE-20...

7.5

CVE-2015-5040

  • EPSS 2.44%
  • Veröffentlicht 29.10.2015 11:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in IBM Domino 8.5.1 through 8.5.3 before 8.5.3 FP6 IF10 and 9.x before 9.0.1 FP4 IF3 allows remote attackers to execute arbitrary code or cause a denial of service (SMTP daemon crash) via a crafted GIF image, aka SPRs KLYH9ZDKRE and K...

7.5

CVE-2015-4994

  • EPSS 2.44%
  • Veröffentlicht 29.10.2015 10:59:43
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in IBM Domino 8.5.1 through 8.5.3 before 8.5.3 FP6 IF10 and 9.x before 9.0.1 FP4 IF3 allows remote attackers to execute arbitrary code or cause a denial of service (SMTP daemon crash) via a crafted GIF image, aka SPRs KLYH9ZDKRE and K...

4.3

CVE-2015-2015

  • EPSS 0.24%
  • Veröffentlicht 23.08.2015 01:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in pubnames.ntf (aka the Directory template) in the web server in IBM Domino before 9.0.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYH8WBPRN.

5.8

CVE-2015-2014

  • EPSS 0.2%
  • Veröffentlicht 23.08.2015 01:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Open redirect vulnerability in the web server in IBM Domino 8.5 before 8.5.3 FP6 IF9 and 9.0 before 9.0.1 FP4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or cross-site scripting (XSS) attacks via a cr...