IBM Lotus Notes prior to 6.5.6, and 7.x prior to 7.0.3; and Domino prior to 6.5.5 FP3, and 7.x prior to 7.0.2 FP1; uses weak permissions (Everyone:Full Control) for memory mapped files (shared memory) in IPC, which allows local users to obtain sensitive information, or inject Lotus Script or other character sequences into a session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus notes |
||
ibm lotus domino |
||
ibm lotus domino 7.0.2 |
||
ibm lotus domino 6.5.5 |