Page 12 of 59 results (0.005 seconds)

CVSS: 7.5EPSS: 4%CPEs: 2EXPL: 0

Lotus Notes R5 Client 4.6 allows remote attackers to execute arbitrary commands via a Lotus Notes object with code in an event, which is automatically executed when the user processes the e-mail message. • http://www.securityfocus.com/archive/1/221986 http://www.securityfocus.com/archive/1/222212 http://www.securityfocus.com/bid/3458 https://exchange.xforce.ibmcloud.com/vulnerabilities/7323 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

A default ECL in Lotus Notes before 5.02 allows remote attackers to execute arbitrary commands by attaching a malicious program in an email message that is automatically executed when the user opens the email. • http://www.kb.cert.org/vuls/id/5962 http://www.notes.net/R5FixList.nsf/Search%21SearchView&Query=CBAT45TU9S https://exchange.xforce.ibmcloud.com/vulnerabilities/5045 •

CVSS: 7.5EPSS: 8%CPEs: 6EXPL: 0

Lotus Notes R5 client R5.0.5 and earlier does not properly warn users when an S/MIME email message has been modified, which could allow an attacker to modify the email in transit without being detected. • http://marc.info/?l=bugtraq&m=97370725220953&w=2 http://www.securityfocus.com/bid/1925 •

CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 0

The Lotus Notes 4.5 client may send a copy of encrypted mail in the clear across the network if the user does not set the "Encrypt Saved Mail" preference. • http://marc.info/?l=bugtraq&m=92221437025743&w=2 http://marc.info/?l=bugtraq&m=92241547418689&w=2 http://marc.info/?l=bugtraq&m=92246997917866&w=2 http://marc.info/?l=bugtraq&m=92249282302994&w=2 •