CVE-2010-0275
UnknownEPSS 1.54%
Last modified
CVE-2010-0275 is a vulnerability of currently unknown severity. Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58.. EPSS estimates a 1.54% chance of exploitation in the next 30 days.
Description
Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Lotus Inotes | <= 229.231 |
| Ibm | Lotus Inotes | 229.011 |
| Ibm | Lotus Inotes | 229.021 |
| Ibm | Lotus Inotes | 229.031 |
| Ibm | Lotus Inotes | 229.041 |
| Ibm | Lotus Inotes | 229.051 |
| Ibm | Lotus Inotes | 229.061 |
| Ibm | Lotus Inotes | 229.101 |
| Ibm | Lotus Inotes | 229.111 |
| Ibm | Lotus Inotes | 229.131 |
| Ibm | Lotus Inotes | 229.141 |
| Ibm | Lotus Inotes | 229.151 |
| Ibm | Lotus Inotes | 229.161 |
| Ibm | Lotus Inotes | 229.171 |
| Ibm | Lotus Inotes | 229.181 |
| Ibm | Lotus Inotes | 229.191 |
| Ibm | Lotus Inotes | 229.201 |
| Ibm | Lotus Inotes | 229.211 |
| Ibm | Lotus Inotes | 229.221 |
References
- http://secunia.com/advisories/38026Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27017776Vendor Advisory
- http://www.vupen.com/english/advisories/2010/0077Vendor Advisory
- http://secunia.com/advisories/38026Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27017776Vendor Advisory
- http://www.vupen.com/english/advisories/2010/0077Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2010-0275?
Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle script commands in the status-alerts URL, which has unspecified impact and attack vectors, aka SPR LSHR7TBM58.
How severe is CVE-2010-0275?
Severity scoring for CVE-2010-0275 is pending analysis. The EPSS model estimates a 1.54% probability of exploitation in the next 30 days.
How do I fix CVE-2010-0275?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2010-0275?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST