Notes/Domino Fix List
 |  |
| SPR # SRAO8U3FUU | Fixed in 8.5.3 FP2 release | Security fix |
Product Area: Client Technical Area: Startup Platform: Windows
Lotus Customer Support APAR: LO70042
SPR# SRAO8U3FUU - Fixed security vulnerability CVE ID: CVE-2012-2174. The issue fixed addressed a security vulnerability in the IBM Lotus Notes URL handler which permits remote code execution. Malicious URLs could allow remote attackers to execute arbitrary code on installations of Lotus Notes. To exploit this vulnerability, the remote attacker must convince a Notes user running on Windows to click on a malicious URL.
There is no Lotus Support Services technote associated with this SPR right now. Please check again later.
Last Modified on 06/18/2012
Go back
|