CVE-2008-1965

Argument injection vulnerability in the cai: URI handler in rcplauncher in IBM Lotus Expeditor Client for Desktop 6.1.1 and 6.1.2, as used by Lotus Symphony and possibly other products, allows remote attackers to execute arbitrary code by injecting a -launcher option via a cai: URI, as demonstrated by a reference to a UNC share pathname.

Published: Apr 25, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-1965
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-94

Affected Software
References

Software	From	Fixed in
ibm / lotus_expeditor_client	6.1.2	6.1.2.x
ibm / lotus_symphany	-	-
ibm / lotus_expeditor_client	6.1.1	6.1.1.x

http://archives.neohapsis.com/archives/fulldisclosure/2008-04/0640.html
http://secunia.com/advisories/29958
http://thomas.pollet.googlepages.com/lotusexpeditorurihandlervulnerability
http://www-1.ibm.com/support/docview.wss?uid=swg21303813
http://www.securityfocus.com/archive/1/491343/100/0/threaded
http://www.securityfocus.com/bid/28926
http://www.securitytracker.com/id?1019951
http://www.securitytracker.com/id?1019952
http://www.vupen.com/english/advisories/2008/1394/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41990

Vulnerability Database

290,206

CVE-2008-1965