IBM Lotus Expeditor Client for Desktop cai URI Handler Code Execution - Security


Editor Login \| Register		Ekle

> World > Security

IBM Lotus Expeditor Client for Desktop cai URI Handler Code Execution - Security - World -

CWRedLight

(Date : 30.04.2008 22:58:54)

IBM Lotus Expeditor Client for Desktop cai URI Handler Code Execution

Secunia Advisory:	SA29958
Release Date:	2008-04-30

Critical:	Highly critical
Impact:	System access
Where:	From remote
Solution Status:	Vendor Patch

Software:	IBM Lotus Expeditor 6.x

Description:
Thomas Pollet has reported a vulnerability in IBM Lotus Expeditor, which can be exploited by malicious people to compromise a user"s system.

The problem is that the application registers the "cai" URI handler, which allows launching rcplauncher.exe with arbitrary command line arguments. This can be exploited to execute arbitrary programs via the "-launcher" argument.

The vulnerability affects Lotus Expeditor Client for Desktop version 6.1 on Windows systems using Internet Explorer.

Solution:
Please contact IBM support for the patch.

Provided and/or discovered by:
Thomas Pollet

Original Advisory:
IBM:
http://www-1.ibm.com/support/docview.wss?uid=swg21303813

http://lists.grok.org.uk/pipermail/full-disclosure/2008-April/061750.html

Derecelendir

Kaynak

http://secunia.com/advisories/29958/

İçerik İhbarı

Bağlantılar: bilgininefendisi.net

Open Source Document Project

AUP&TOS