CVE-2011-1214 - Vulnerability Details

Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Lotus Notes

Configuration 1 [-]

OR	cpe:2.3:a:ibm:lotus_notes::::::::
	cpe:2.3:a:ibm:lotus_notes:3.0:::::::*
	cpe:2.3:a:ibm:lotus_notes:3.0.0.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:3.0.0.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.2.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.2.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.5:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.6:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.6.7a:::::::*
	cpe:2.3:a:ibm:lotus_notes:4.6.7h:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.1.02:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.1a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.1b:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.1c:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.2a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.2b:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.2c:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.3:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.4:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.4a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.5:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.5.01:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.5.02:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.6:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.6a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.6a.01:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.7:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.7a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.8:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.9:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.9a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.10:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.11:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0.12:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.0a:::::::*
	cpe:2.3:a:ibm:lotus_notes:5.02:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0.1:cf1::::::
	cpe:2.3:a:ibm:lotus_notes:6.0.1:cf2::::::
	cpe:2.3:a:ibm:lotus_notes:6.0.1:cf3::::::
	cpe:2.3:a:ibm:lotus_notes:6.0.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0.2:cf1::::::
	cpe:2.3:a:ibm:lotus_notes:6.0.2:cf2::::::
	cpe:2.3:a:ibm:lotus_notes:6.0.2.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0.3:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0.4:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.0.5:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.3:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.3.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.4:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.4.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.4.2:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.4.3:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.5:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.5.1:::::::*
	cpe:2.3:a:ibm:lotus_notes:6.5.5.2:::::::*
cpe:2.3:a:ibm:lotus_notes:6.5.5.3:::::::*
cpe:2.3:a:ibm:lotus_notes:6.5.6:::::::*
cpe:2.3:a:ibm:lotus_notes:6.5.6.1:::::::*
cpe:2.3:a:ibm:lotus_notes:6.5.6.2:::::::*
cpe:2.3:a:ibm:lotus_notes:6.5.6.3:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.0:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.1:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.1.1:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.2:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.2.1:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.2.2:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.2.3:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.3:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.3.1:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.4:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.4.0:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.4.1:::::::*
cpe:2.3:a:ibm:lotus_notes:7.0.4.2:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.0:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.1:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.0:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.1:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.2:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.3:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.4:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.5:::::::*
cpe:2.3:a:ibm:lotus_notes:8.0.2.6:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.0.0:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.0.1:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1.0:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1.1:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1.2:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1.3:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1.4:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.1.5:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.2.0:::::::*
cpe:2.3:a:ibm:lotus_notes:8.5.2.1:::::::*

No data.

References

Link	Providers
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=905
http://secunia.com/advisories/44624
http://www.ibm.com/support/docview.wss?uid=swg21500034
http://www.securityfocus.com/bid/47962
https://exchange.xforce.ibmcloud.com/vulnerabilities/67621
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14309

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-05-31T20:00:00

Updated: 2024-08-06T22:21:33.412Z

Reserved: 2011-03-03T00:00:00

Link: CVE-2011-1214

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-05-31T20:55:01.983

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-1214

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-05-24T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-18T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.ibm.com/support/docview.wss?uid=swg21500034"}, {"name": "47962", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/47962"}, {"name": "44624", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/44624"}, {"name": "20110524 IBM Lotus Notes RTF Attachment Viewer Stack Buffer Overflow", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=905"}, {"name": "lotus-notes-rtfsr-bo(67621)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67621"}, {"name": "oval:org.mitre.oval:def:14309", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14309"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-1214", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.ibm.com/support/docview.wss?uid=swg21500034", "refsource": "CONFIRM", "url": "http://www.ibm.com/support/docview.wss?uid=swg21500034"}, {"name": "47962", "refsource": "BID", "url": "http://www.securityfocus.com/bid/47962"}, {"name": "44624", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/44624"}, {"name": "20110524 IBM Lotus Notes RTF Attachment Viewer Stack Buffer Overflow", "refsource": "IDEFENSE", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=905"}, {"name": "lotus-notes-rtfsr-bo(67621)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67621"}, {"name": "oval:org.mitre.oval:def:14309", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14309"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:21:33.412Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.ibm.com/support/docview.wss?uid=swg21500034"}, {"name": "47962", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/47962"}, {"name": "44624", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/44624"}, {"name": "20110524 IBM Lotus Notes RTF Attachment Viewer Stack Buffer Overflow", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=905"}, {"name": "lotus-notes-rtfsr-bo(67621)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67621"}, {"name": "oval:org.mitre.oval:def:14309", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14309"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-1214", "datePublished": "2011-05-31T20:00:00", "dateReserved": "2011-03-03T00:00:00", "dateUpdated": "2024-08-06T22:21:33.412Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:lotus_notes:*:*:*:*:*:*:*:*", "matchCriteriaId": "F06E9E8E-9A82-4665-A848-5E0BAD141A1C", "versionEndIncluding": "8.5.2.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "024E3378-AB78-41CE-8BE3-CB26F0FCC6FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:3.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "59D68592-A475-4D35-8A8F-5A4EEDA5A1A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:3.0.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "9727C084-8043-43D7-9BF3-1D49BBA33772", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "9409A77C-1927-4C1C-945A-10F8CD8DB287", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "EE08605F-643F-4562-934E-CA46DF3CE57C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "BE78A5CE-28D9-47AB-9831-F4C0F0843EF6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.5:*:*:*:*:*:*:*", "matchCriteriaId": "8376F4C1-44AE-42A8-A087-E3845FD2A0A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.6:*:*:*:*:*:*:*", "matchCriteriaId": "2A697B26-0600-416A-B0FA-BE031EB6D8A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.6.7a:*:*:*:*:*:*:*", "matchCriteriaId": "2851AFEE-2598-4CDC-A1B3-D119A647F4B4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:4.6.7h:*:*:*:*:*:*:*", "matchCriteriaId": "B730F1C4-2A7C-4305-BEA1-4BA1F1B1F955", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "C1D5D749-546A-4655-A0BF-0A2D4E9F51A1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "5C43E91B-492D-42E0-9C59-3DA83AF7367B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.1.02:*:*:*:*:*:*:*", "matchCriteriaId": "7987940E-0F70-4C0F-AB8D-A52934B33777", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.1a:*:*:*:*:*:*:*", "matchCriteriaId": "BBEDCC0A-FCA0-45C2-B202-BF9F90739893", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.1b:*:*:*:*:*:*:*", "matchCriteriaId": "A25DD7B4-A33F-4810-84C1-D8C57D044769", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.1c:*:*:*:*:*:*:*", "matchCriteriaId": "924FC755-DF96-4E83-92DB-BD3877E226A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "4C944AEC-18C2-487E-8E0F-EC525D21EDF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.2a:*:*:*:*:*:*:*", "matchCriteriaId": "D8EC2158-C008-4AD0-85A5-6B4A210A7752", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.2b:*:*:*:*:*:*:*", "matchCriteriaId": "5F3715F6-F157-4BF2-80C3-DC5366C0F5DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.2c:*:*:*:*:*:*:*", "matchCriteriaId": "89111665-4C64-46A5-955D-DB5A2A73E6BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "0D4B2601-B62F-4235-BFFD-281235737450", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "CA83054E-5E6B-48A4-8799-5C8507BFEB68", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.4a:*:*:*:*:*:*:*", "matchCriteriaId": "77636603-5AEA-475A-9BB7-3C38198A0327", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "D7DEAC0E-C59B-42DB-BB81-E34C9F843486", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.5.01:*:*:*:*:*:*:*", "matchCriteriaId": "EF14DAF5-D52A-4B59-B67A-7878C2A8431D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.5.02:*:*:*:*:*:*:*", "matchCriteriaId": "8001558A-B47D-420C-9275-979A06D03572", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "8809E947-43E1-4D92-A5A5-63FEDBF12318", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.6a:*:*:*:*:*:*:*", "matchCriteriaId": "DCE790A9-912C-444C-B4B0-BEB212DC4B9F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.6a.01:*:*:*:*:*:*:*", "matchCriteriaId": "2171E8CD-F42A-41A9-A03D-74BE1DF9040F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "21212C5E-A5AB-4080-84A3-603F0425D4CD", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.7a:*:*:*:*:*:*:*", "matchCriteriaId": "D8F21BD9-A01D-4D3C-831F-80A966F7CF72", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "32646B3D-C8C6-4325-8546-38A79EF3446A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "312EAEC3-1E31-48E1-8729-E7AF338F608D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.9a:*:*:*:*:*:*:*", "matchCriteriaId": "780C6EC1-11FD-458C-B59F-11668BA1E466", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "0A7F5626-EB8B-4339-9EB5-C23962DAC95A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "7CB071DF-5C48-4FE8-8DCC-68582A3C1EC6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "273DF27B-9441-4925-BD7E-5709D7D059EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.0a:*:*:*:*:*:*:*", "matchCriteriaId": "46196D69-B5FE-49ED-8032-54B4470487EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:5.02:*:*:*:*:*:*:*", "matchCriteriaId": "CD51B7AD-1523-4BF4-8DFF-54D5F9A0E66A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "1E234AD1-7202-421E-82C8-880E84876021", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "55D037CC-1207-48E2-882E-8B236EE7138F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.1:cf1:*:*:*:*:*:*", "matchCriteriaId": "63ABBCF5-A164-458F-A8C6-75FC6CFE101B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.1:cf2:*:*:*:*:*:*", "matchCriteriaId": "A174D36F-A4F0-4FE0-AAD7-F57E93BB3805", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.1:cf3:*:*:*:*:*:*", "matchCriteriaId": "8EB4A3EA-DD4C-4E98-8E3A-487F0AE9AED0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "5059BEF2-84EB-4B5F-84F5-9E3200B068F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.2:cf1:*:*:*:*:*:*", "matchCriteriaId": "0CB2FAA8-176F-4AA2-ADFA-F4401C76BB15", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.2:cf2:*:*:*:*:*:*", "matchCriteriaId": "FEEA994A-F8B6-4A0D-8FCD-ED63F83DDA18", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "82322774-CEB9-41FD-9319-AE0716EF28CE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "AB71B7AA-957B-46A6-9BC9-CE23EC721189", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "46CF28C0-51AD-4783-B1F0-205DF64D133A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "9C0015A2-A70E-4B0C-B59A-44F5F611293D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "1360A50E-C1E1-4690-874A-04CC7C1A77CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "D94927A9-61FD-459F-9A6D-E581A4AF505C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "D3B32BA2-9EB7-4294-A857-226A5B1CC401", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "EF64CA16-6C20-42E1-BA68-BD63A873BFA9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "34625785-9560-4496-9426-BBEE35F6E52C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "12D7DD7B-CA90-44A5-9B7B-4A4985150689", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "C5C60350-0731-477D-B280-24109509E7B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "DCF51F97-14D8-4AC6-B26E-AE9306EAF3AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "006C226E-E9CA-4999-B6D4-5DBABF99A4B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5:*:*:*:*:*:*:*", "matchCriteriaId": "C63D40DF-C6F3-4502-9816-939265F10532", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "9203EC38-2DFD-4259-B636-F9E38AE5AA6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "0C6EF122-510F-4B6D-B2F3-DFD5E8FB76C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "1581AEE3-F127-44D8-AA95-6408D9D919A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.6:*:*:*:*:*:*:*", "matchCriteriaId": "4598C4A8-B19D-4562-A5B5-D3B090F0C8D7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "AAEF2C65-215E-4900-8054-BC35DFA0BDF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "4BE1176C-39C3-4ED6-9689-4107B546F248", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:6.5.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "D1E016DE-149E-41CD-856E-7B3EE8B0702C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "68AEB13D-C7C6-426F-8484-85EFF7245DF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "957BA698-9D48-4906-9FF3-584927C978B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "94646433-DE15-4214-9C78-7D1DAB5A12D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "B1AD22A1-A85C-4755-97CB-6B946E1DBE0B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "3449A490-865A-4262-8482-429DEF455644", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "98AF1B57-680B-45E5-9991-83DDE4634EE0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "BC128482-5AA3-43D9-AE5F-154E8485F699", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "2837D777-5C59-4335-A4BC-611397D1D1AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "F01C5CFC-7FB8-4D29-95AC-8EF59B0C170D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "37F5FB91-53EE-47BA-84B7-49CE9D83C8A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "FC9D74FC-8F26-4D1A-B02B-C4037FF8388A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "D6E0DFE2-22CA-40AE-8CDB-EF5EEE1E6F54", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "E1AD640D-BFDC-4E27-BF8B-4FE35DE87890", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:7.0.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "5DB38591-F55A-48B2-AD52-FF266D19BB97", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "692E295E-E650-42D5-AF7A-D6276C3D76E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "A1E25625-8570-4744-A2A2-4A4FB4D8AC6A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "50660BA1-A24A-4DBF-AB59-1CF04FA54120", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "5759CBCB-7B3F-462A-B51A-FD2C6B13CCE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "69A79FA5-83FB-4067-B2A6-17EAF3947998", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "17815F4E-BB34-40D2-A3EE-3C7741940D1B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "7DE79982-9E92-498A-B961-55CB1D2D104F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "F6814E3F-479C-4F56-BF66-C685E60CCA34", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "BB9EF5DE-4432-4099-AD59-CDD52E387BB8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "A1013797-0442-46A7-A94F-354388BA6B69", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.0.2.6:*:*:*:*:*:*:*", "matchCriteriaId": "0CC228A3-1878-4A9F-8664-F4DFF77BF74B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*", "matchCriteriaId": "0119A252-73B1-490F-9371-06E8FDB8B979", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "57D24791-E798-4B08-A051-E880DEFB8268", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "2758590C-67FD-4DD6-84C1-0D32264BBE5F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "A7FC083C-B25E-427F-B722-B5ABD4F072F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "0B0CF8A5-BC24-4204-BC06-2E1E2FB60E4D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "CDA723DB-62C5-4C84-B0BA-5313FDA49D73", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "92F08B96-D43E-407E-839C-4C3C5BB58B2B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "5E50C779-C780-45FB-BC77-B9717389D2EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "867779A4-A7A5-48AD-9AC0-C6476719A5EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "6B7B7544-D60C-4B9A-BC29-B30AD86EC9B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "9D475EF5-DBB3-4B98-BB07-83A2632B5E0D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "F797A209-65C0-4A20-9DA2-C5576C091DE2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in rtfsr.dll in Autonomy KeyView, as used in IBM Lotus Notes before 8.5.2 FP3, allows remote attackers to execute arbitrary code via a crafted link in a .rtf attachment, aka SPR PRAD8823JQ."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en pila en rtfsr.dll en Autonomy KeyView, tal como se utiliza en IBM Lotus Notes antes de v8.5.2 FP3, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un enlace a manipulado en un archivo .rtf adjunto, tambi\u00e9n conocido como SPR PRAD8823JQ."}], "id": "CVE-2011-1214", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2011-05-31T20:55:01.983", "references": [{"source": "cve@mitre.org", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=905"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/44624"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.ibm.com/support/docview.wss?uid=swg21500034"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/47962"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67621"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14309"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=905"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/44624"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.ibm.com/support/docview.wss?uid=swg21500034"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/47962"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67621"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14309"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object