← Back

CVE-2010-0919

nvd nist
Published: Mar 3, 2010Modified: Apr 29, 2026

JSON object

Loading...
7.6
Vector
AV:N/AC:H/Au:N/C:C/I:C/A:C
Exploitability: 4.9 / Impact: 10.0
Source: NVD

Description

Stack-based buffer overflow in the Lotus Domino Web Access ActiveX control in IBM Lotus iNotes (aka Domino Web Access or DWA) 6.5, 7.0 before 7.0.4, 8.0, 8.0.2, and before 229.281 for Domino 8.0.2 FP4 allows remote attackers to execute arbitrary code via a long URL argument to an unspecified method, aka PRAD7JTNHJ.

Affected (30)

Ibm
2 products
Domino Web Access
Lotus Inotes
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Ibm
Domino Web Access
Version 6.5
Domino Web Access
Version 7.0.1
Domino Web Access
Version 7.0.2
Domino Web Access
Version 7.0.3
Domino Web Access
Version 7.0
Domino Web Access
Version 8.0.2
Domino Web Access
Version 8.0
Configuration B
23 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ibm
Lotus Inotes
Up to 229.271
Lotus Inotes
Version 229.011
Lotus Inotes
Version 229.021
Lotus Inotes
Version 229.031
Lotus Inotes
Version 229.041
Lotus Inotes
Version 229.051
Lotus Inotes
Version 229.061
Lotus Inotes
Version 229.101
Lotus Inotes
Version 229.111
Lotus Inotes
Version 229.131
Lotus Inotes
Version 229.141
Lotus Inotes
Version 229.151
Lotus Inotes
Version 229.161
Lotus Inotes
Version 229.171
Lotus Inotes
Version 229.181
Lotus Inotes
Version 229.191
Lotus Inotes
Version 229.201
Lotus Inotes
Version 229.211
Lotus Inotes
Version 229.221
Lotus Inotes
Version 229.231
Lotus Inotes
Version 229.241
Lotus Inotes
Version 229.251
Lotus Inotes
Version 229.261
Running on/withPlatform Versions
Ibm
Lotus Domino
Version 8.0.2.4

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (26)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.