CVE-2014-0892: Infoleak
First published: Wed Apr 23 2014(Updated: )
IBM Notes and Domino 8.5.x before 8.5.3 FP6 IF3 and 9.x before 9.0.1 FP1 on 32-bit Linux platforms use incorrect gcc options, which makes it easier for remote attackers to execute arbitrary code by leveraging the absence of the NX protection mechanism and placing crafted x86 code on the stack, aka SPR KLYH9GGS9W.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Lotus Domino | =8.5.0 | |
| IBM Lotus Domino | =8.5.0.1 | |
| IBM Lotus Domino | =8.5.1 | |
| IBM Lotus Domino | =8.5.1.1 | |
| IBM Lotus Domino | =8.5.1.2 | |
| IBM Lotus Domino | =8.5.1.3 | |
| IBM Lotus Domino | =8.5.1.4 | |
| IBM Lotus Domino | =8.5.1.5 | |
| IBM Lotus Domino | =8.5.2.0 | |
| IBM Lotus Domino | =8.5.2.1 | |
| IBM Lotus Domino | =8.5.2.2 | |
| IBM Lotus Domino | =8.5.2.3 | |
| IBM Lotus Domino | =8.5.2.4 | |
| IBM Lotus Domino | =8.5.3.0 | |
| IBM Lotus Domino | =8.5.3.1 | |
| IBM Lotus Domino | =8.5.3.2 | |
| IBM Lotus Domino | =8.5.3.3 | |
| IBM Lotus Domino | =8.5.3.4 | |
| IBM Lotus Domino | =8.5.3.5 | |
| IBM Lotus Domino | =8.5.3.6 | |
| IBM Lotus Domino | =9.0.0.0 | |
| IBM Lotus Domino | =9.0.1.0 | |
| Linux Linux kernel | ||
| IBM Lotus Notes | =8.5 | |
| IBM Lotus Notes | =8.5.0.0 | |
| IBM Lotus Notes | =8.5.0.1 | |
| IBM Lotus Notes | =8.5.1 | |
| IBM Lotus Notes | =8.5.1.0 | |
| IBM Lotus Notes | =8.5.1.1 | |
| IBM Lotus Notes | =8.5.1.2 | |
| IBM Lotus Notes | =8.5.1.3 | |
| IBM Lotus Notes | =8.5.1.4 | |
| IBM Lotus Notes | =8.5.1.5 | |
| IBM Lotus Notes | =8.5.2.0 | |
| IBM Lotus Notes | =8.5.2.1 | |
| IBM Lotus Notes | =8.5.2.2 | |
| IBM Lotus Notes | =8.5.2.3 | |
| IBM Lotus Notes | =8.5.3 | |
| IBM Lotus Notes | =8.5.3.1 | |
| IBM Lotus Notes | =8.5.3.2 | |
| IBM Lotus Notes | =8.5.3.3 | |
| IBM Lotus Notes | =8.5.3.4 | |
| IBM Lotus Notes | =8.5.3.5 | |
| IBM Lotus Notes | =8.5.3.6 | |
| IBM Lotus Notes | =9.0.0.0 | |
| IBM Lotus Notes | =9.0.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm lotus domino
- version/ibm lotus domino/8.5.0
- version/ibm lotus domino/8.5.0.1
- version/ibm lotus domino/8.5.1
- version/ibm lotus domino/8.5.1.1
- version/ibm lotus domino/8.5.1.2
- version/ibm lotus domino/8.5.1.3
- version/ibm lotus domino/8.5.1.4
- version/ibm lotus domino/8.5.1.5
- version/ibm lotus domino/8.5.2.0
- version/ibm lotus domino/8.5.2.1
- version/ibm lotus domino/8.5.2.2
- version/ibm lotus domino/8.5.2.3
- version/ibm lotus domino/8.5.2.4
- version/ibm lotus domino/8.5.3.0
- version/ibm lotus domino/8.5.3.1
- version/ibm lotus domino/8.5.3.2
- version/ibm lotus domino/8.5.3.3
- version/ibm lotus domino/8.5.3.4
- version/ibm lotus domino/8.5.3.5
- version/ibm lotus domino/8.5.3.6
- version/ibm lotus domino/9.0.0.0
- version/ibm lotus domino/9.0.1.0
- vendor/linux
- canonical/linux linux kernel
- canonical/ibm lotus notes
- version/ibm lotus notes/8.5
- version/ibm lotus notes/8.5.0.0
- version/ibm lotus notes/8.5.0.1
- version/ibm lotus notes/8.5.1
- version/ibm lotus notes/8.5.1.0
- version/ibm lotus notes/8.5.1.1
- version/ibm lotus notes/8.5.1.2
- version/ibm lotus notes/8.5.1.3
- version/ibm lotus notes/8.5.1.4
- version/ibm lotus notes/8.5.1.5
- version/ibm lotus notes/8.5.2.0
- version/ibm lotus notes/8.5.2.1
- version/ibm lotus notes/8.5.2.2
- version/ibm lotus notes/8.5.2.3
- version/ibm lotus notes/8.5.3
- version/ibm lotus notes/8.5.3.1
- version/ibm lotus notes/8.5.3.2
- version/ibm lotus notes/8.5.3.3
- version/ibm lotus notes/8.5.3.4
- version/ibm lotus notes/8.5.3.5
- version/ibm lotus notes/8.5.3.6
- version/ibm lotus notes/9.0.0.0
- version/ibm lotus notes/9.0.1.0