The remote console in the Server Controller in IBM Lotus Domino 7.x and 8.x verifies credentials against a file located at a UNC share pathname specified by the client, which allows remote attackers to bypass authentication, and consequently execute arbitrary code, by placing this pathname in the COOKIEFILE field. NOTE: this might overlap CVE-2011-0920.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2011-03-25T19:00:00
Updated: 2018-10-09T18:57:01
Reserved: 2011-03-25T00:00:00
Link: CVE-2011-1519
JSON object: View
NVD Information
Status : Modified
Published: 2011-03-25T19:55:01.747
Modified: 2018-10-09T19:31:06.660
Link: CVE-2011-1519
JSON object: View
Redhat Information
No data.
CWE