CVE-2010-0276 - IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properl

CVE-2010-0276

Summary

IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle navigation of the "Try Lotus iNotes anyway" link from the page that reports use of an unsupported browser, which has unspecified impact and attack vectors, aka SPR LSHR7TBMQU.

References

Vulnerable Configurations

cpe:2.3:a:ibm:domino_web_access:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:domino_web_access:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_inotes:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_inotes:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:lotus_domino:8.0.2.3:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 17-08-2017 - 01:31)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	37675
confirm	http://www-01.ibm.com/support/docview.wss?uid=swg27017776
secunia	38026
vupen	ADV-2010-0077
xf	domino-trylotus-unspecified(55473)

Last major update

17-08-2017 - 01:31

Published

09-01-2010 - 18:30

Last modified

17-08-2017 - 01:31