CVE-2014-0892

Published Apr 23, 2014
Last updated 4 months ago
CVSS info 5.0
Overview

Description: IBM Notes and Domino 8.5.x before 8.5.3 FP6 IF3 and 9.x before 9.0.1 FP1 on 32-bit Linux platforms use incorrect gcc options, which makes it easier for remote attackers to execute arbitrary code by leveraging the absence of the NX protection mechanism and placing crafted x86 code on the stack, aka SPR KLYH9GGS9W.
Source: psirt@us.ibm.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses

nvd@nist.gov: CWE-200
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1588F54-4E8B-43C3-85E5-A12C04B694CD"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6DDD0E9-9084-4F0A-B3F1-8357CAD88A3E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E0059358-69C1-4F89-B4E6-B6BE22845D33"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECF00AEE-9A3A-46E3-8B0F-2131E3235431"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9861BE52-4945-4F36-B6EF-701DB789CA28"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D6BFA82-5CA0-403F-98E6-342EF87AE366"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79CBA8AF-9C3D-4510-8D91-7C42931CD3FF"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6DB694E3-96E1-4283-8DE3-91E930F76A65"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDB2B497-83A2-41A4-9F0D-CD17080CC1DA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "91D7FA80-1FD9-48F3-934A-FC7B3BAD4FD6"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E30C8593-884E-4F6B-B107-0B3276EB1102"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5B5CCB4-BB4F-4677-A7AA-B7C20682A00D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2408220F-FBDB-419E-8F04-35BED47CE213"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "350ACC22-669F-4429-A525-36F56EF9678C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C068055-FB7A-4AFB-AF29-28238ECF126F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1ACB4B2C-CCE1-4A0A-B962-B8C208869589"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC1A8676-B2CA-49FF-A43E-EAC62170BF82"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71ADC0C5-36E9-426E-B302-56804B1800BB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24863689-9472-4C56-B3A8-3053494437C1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35B19F27-E6EE-41AA-937D-173E592A9278"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:9.0.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7025B610-6988-4A78-B0ED-6FB728AA6C28"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:9.0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA3B3D5F-EB63-4ABA-8A27-BD654422DA54"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0119A252-73B1-490F-9371-06E8FDB8B979"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57D24791-E798-4B08-A051-E880DEFB8268"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2758590C-67FD-4DD6-84C1-0D32264BBE5F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7FC083C-B25E-427F-B722-B5ABD4F072F1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B0CF8A5-BC24-4204-BC06-2E1E2FB60E4D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CDA723DB-62C5-4C84-B0BA-5313FDA49D73"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92F08B96-D43E-407E-839C-4C3C5BB58B2B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E50C779-C780-45FB-BC77-B9717389D2EB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "867779A4-A7A5-48AD-9AC0-C6476719A5EE"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B7B7544-D60C-4B9A-BC29-B30AD86EC9B9"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D475EF5-DBB3-4B98-BB07-83A2632B5E0D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F797A209-65C0-4A20-9DA2-C5576C091DE2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B01BCFA-13B4-4AB3-9558-4B704F6DCFA2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D027E003-84C9-4290-A032-649C5E66B23B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D9A13AC-B552-4E86-9E5D-62354D78E49C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E5CDBCB-F314-453B-B837-B03B53215748"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A92849F-05E0-47DB-AB43-8AC559568D0B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DBDF9A3-CFB2-42B3-B125-93B8A36E0ED1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9991C0A7-EF7B-48AF-BB7B-B54A1F2AB99E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F3203D4-354C-46B2-B68C-5B23CDD5146B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:8.5.3.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9AE476E-4245-4136-A713-4E725B53CD86"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:9.0.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "234A9059-B0DE-4BEB-ADC4-76F906D86ECC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_notes:9.0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A53C163-AA20-4228-8BE4-58E22F742557"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
