IBM Lotus Notes 6.0, 6.5, 7.0, and 8.0 signs an unsigned applet when a user forwards an email message to another user, which allows user-assisted remote malicious users to bypass Execution Control List (ECL) protection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm lotus notes 6.0 |
||
ibm lotus notes 6.5 |
||
ibm lotus notes 7.0 |
||
ibm lotus notes 8.0 |