Ibm

Lotus Notes Traveler

25 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4

CVE-2010-4551

  • EPSS 0.41%
  • Published 16.12.2010 20:00:17
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by omitting the Internet ID field in the person document, and then using an Apple device to (1) accept ...

5

CVE-2010-4553

  • EPSS 0.65%
  • Published 16.12.2010 20:00:17
  • Last modified 11.04.2025 00:51:21

An unspecified Domino API in IBM Lotus Notes Traveler before 8.5.1.1 does not properly handle MIME types, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.

5

CVE-2010-4552

  • EPSS 0.65%
  • Published 16.12.2010 20:00:17
  • Last modified 11.04.2025 00:51:21

Memory leak in IBM Lotus Notes Traveler before 8.5.1.1 allows remote attackers to cause a denial of service (memory consumption and daemon outage) by sending many embedded objects in e-mail messages for iPhone clients.

5

CVE-2010-4550

  • EPSS 0.65%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to cause a denial of service (sync failure) via a malformed document.

4

CVE-2010-4549

  • EPSS 0.14%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.3 on the Nokia s60 device successfully performs a Replace Data operation for a prohibited application, which allows remote authenticated users to bypass intended access restrictions via this operation.

2.1

CVE-2010-4548

  • EPSS 0.41%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (daemon crash) by accepting a meeting invitation with an iNotes client and then accepting this meeting invitation with an iPhone client.

3.5

CVE-2010-4547

  • EPSS 0.14%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.3, when a multidomain environment is used, does not properly apply policy documents to mobile users from a different Domino domain than the Traveler server, which allows remote authenticated users to bypass inten...

4

CVE-2010-4546

  • EPSS 0.14%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.2 does not reject an attachment download request for an e-mail message with a Prevent Copy attribute, which allows remote authenticated users to bypass intended access restrictions via this request.

4

CVE-2010-4545

  • EPSS 0.41%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (resource consumption and sync outage) by syncing a large volume of data.

4.3

CVE-2010-4544

  • EPSS 0.26%
  • Published 16.12.2010 20:00:16
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.