« PC Organ Donor for Domino 4.6 | Main | Microsoft Developer Express »
June 28, 2004
New Lotus Notes Vulnerability -- but to what?
There is a newly reported vulnerabiltiy -- [Full-Disclosure] Lotus Notes URL argument injection vulnerability that will allow a web page to issue additional options to the notes:// URL. The iDefense site explains how Notes can be started with a UNC share. I doubt very many companies are allowing UNC shares through their firewalls. The part that seems like a stretch is:
The attacker can create a malicious DLL containing arbitrary code that will be loaded and executed when notes.exe is starting up.
Could this really happen?
Posted by michael at June 28, 2004 03:11 PM
Comments
Attackers can be inside the firewall. They can be employees, or they can be outsiders who have gained access through a Microsoft security flaw, through an emailed trojan horse, etc.
-rich
Posted by: Richard Schwartz at June 29, 2004 09:20 PM