CVE-2009-5033
N/A
N/A
Summary
IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* *" argument sequence for a certain tell command, which allows remote authenticated users to obtain access to other users' data via a sync operation, related to storage of the data of multiple users within the same thread.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64742
- http://www-1.ibm.com/support/docview.wss?uid=swg1LO41040
- http://www-10.lotus.com/ldd/dominowiki.nsf/page.xsp?documentId=A6604E906E0DF2DF8525778B005D4466&action=openDocument
- http://www-01.ibm.com/support/docview.wss?uid=swg24019529&aid=1
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64742
- http://www-1.ibm.com/support/docview.wss?uid=swg1LO41040
- http://www-10.lotus.com/ldd/dominowiki.nsf/page.xsp?documentId=A6604E906E0DF2DF8525778B005D4466&action=openDocument
- http://www-01.ibm.com/support/docview.wss?uid=swg24019529&aid=1
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.