Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Lotus_notes_traveler
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 25 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2010-12-16 | CVE-2010-4553 | An unspecified Domino API in IBM Lotus Notes Traveler before 8.5.1.1 does not properly handle MIME types, which allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4552 | Memory leak in IBM Lotus Notes Traveler before 8.5.1.1 allows remote attackers to cause a denial of service (memory consumption and daemon outage) by sending many embedded objects in e-mail messages for iPhone clients. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4551 | IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by omitting the Internet ID field in the person document, and then using an Apple device to (1) accept or (2) decline an invitation. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4550 | IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to cause a denial of service (sync failure) via a malformed document. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4549 | IBM Lotus Notes Traveler before 8.5.1.3 on the Nokia s60 device successfully performs a Replace Data operation for a prohibited application, which allows remote authenticated users to bypass intended access restrictions via this operation. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4548 | IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (daemon crash) by accepting a meeting invitation with an iNotes client and then accepting this meeting invitation with an iPhone client. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4547 | IBM Lotus Notes Traveler before 8.5.1.3, when a multidomain environment is used, does not properly apply policy documents to mobile users from a different Domino domain than the Traveler server, which allows remote authenticated users to bypass intended access restrictions by using credentials from a different domain. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4546 | IBM Lotus Notes Traveler before 8.5.1.2 does not reject an attachment download request for an e-mail message with a Prevent Copy attribute, which allows remote authenticated users to bypass intended access restrictions via this request. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4545 | IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service (resource consumption and sync outage) by syncing a large volume of data. | Lotus_notes_traveler | N/A | ||
| 2010-12-16 | CVE-2010-4544 | Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | Lotus_notes_traveler | N/A |