CVE-2013-0536

ntmulti.exe in the Multi User Profile Cleanup service in IBM Notes 8.0, 8.0.1, 8.0.2, 8.5, 8.5.1, 8.5.2, 8.5.3 before FP5, and 9.0 before IF2 allows local users to gain privileges via vectors that arrange for code to be executed during the next login session of a different user, aka SPR PJOK959J24.

Published: Jun 21, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-0536
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
ibm / lotus_inotes	8.5.2.0	8.5.2.0.x
ibm / lotus_notes	8.5	8.5.x
ibm / lotus_notes	8.5.1	8.5.1.x
ibm / lotus_notes	8.0.1	8.0.1.x
ibm / lotus_inotes	8.5.3.0	8.5.3.0.x
ibm / lotus_notes	8.0.2	8.0.2.x
ibm / lotus_notes_traveler	9.0	9.0.x
ibm / lotus_notes	8.0	8.0.x

http://www-01.ibm.com/support/docview.wss?uid=swg21633827
https://exchange.xforce.ibmcloud.com/vulnerabilities/82658

Vulnerability Database

289,697

CVE-2013-0536