CVE-2007-1784
First published: Sat Mar 31 2007(Updated: )
The JNILoader ActiveX control (STJNILoader.ocx) 3.1.0.26 in IBM Lotus Notes Sametime before 7.5 allows remote attackers to load arbitrary DLL libraries and execute arbitrary code via arbitrary arguments to the loadLibrary function.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Sametime | <=7.0 | |
| IBM Sametime | =7.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-1784?
CVE-2007-1784 has a high severity rating due to its ability to allow remote attackers to execute arbitrary code on the affected systems.
How do I fix CVE-2007-1784?
To fix CVE-2007-1784, update your IBM Lotus Sametime to version 7.5 or later, as this version addresses the vulnerability.
What versions of IBM Lotus Sametime are affected by CVE-2007-1784?
CVE-2007-1784 affects IBM Lotus Sametime versions prior to 7.5, including all versions up to and including 7.0.
What is the exploit method for CVE-2007-1784?
CVE-2007-1784 can be exploited by remote attackers who can pass arbitrary arguments to the loadLibrary function in the JNILoader ActiveX control.
Are there any workarounds for CVE-2007-1784?
As a temporary workaround for CVE-2007-1784, consider disabling or removing the JNILoader ActiveX control in affected versions of IBM Lotus Sametime until a proper update can be applied.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/ibm
- canonical/ibm sametime
- version/ibm sametime/7.0
- version/ibm sametime/7.5