CVE-2017-1130

EUVD-2017-10146
IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it would open up many file select dialog boxes which would cause the client hang and have to be restarted. IBM X-Force ID: 121371.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
ibminotes
8.5.0.0
ibminotes
8.5.1.0
ibminotes
8.5.1.1
ibminotes
8.5.1.5
ibminotes
8.5.2.0
ibminotes
8.5.2.1
ibminotes
8.5.2.4
ibminotes
8.5.3.0
ibminotes
8.5.3.1
ibminotes
8.5.3.6
ibminotes
9.0.0.0
ibminotes
9.0.1.0
ibminotes
9.0.1.1
ibminotes
9.0.1.8
𝑥
= Vulnerable software versions
References
http://www.ibm.com/support/docview.wss?uid=swg21999384
http://www.securityfocus.com/bid/100632
https://exchange.xforce.ibmcloud.com/vulnerabilities/121371
https://www.exploit-db.com/exploits/42604/
http://www.ibm.com/support/docview.wss?uid=swg21999384
http://www.securityfocus.com/bid/100632
https://exchange.xforce.ibmcloud.com/vulnerabilities/121371
https://www.exploit-db.com/exploits/42604/