CVE-2013-0536

Published: Jun 21, 2013Modified: Apr 29, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

ntmulti.exe in the Multi User Profile Cleanup service in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3 before FP5, and 9.0 before IF2 allows local users to gain privileges via vectors that arrange for code to be executed during the next login session of a different user, aka SPR PJOK959J24.

Affected (8)

Products: Ibm: Lotus Inotes, Lotus Notes, Lotus Notes Traveler

3 products

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Ibm Lotus Inotes	Version 8.5.2.0
Ibm Lotus Inotes	Version 8.5.3.0
Ibm Lotus Notes	Version 8.0.1
Ibm Lotus Notes	Version 8.0.2
Ibm Lotus Notes	Version 8.0
Ibm Lotus Notes	Version 8.5.1
Ibm Lotus Notes	Version 8.5
Ibm Lotus Notes Traveler	Version 9.0

Related CWEs

CWE-264

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg21633827

Source: psirt@us.ibm.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/82658

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21633827

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/82658

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.