CyberSec.Space Logo
Back to CVE Browser

CVE-2011-2885

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.0150%
EPSS Percentile2.96th
PublishedJul 27, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application crash) via the sample .doc document that incorporates a user-defined toolbar.

Affected Platforms (CPE)

πŸ“¦
Ibm

Lotus Symphony

= 3.0.0
πŸ“¦
Ibm

Lotus Symphony

= 3.0.0.1
πŸ“¦
Ibm

Lotus Symphony

= 3.0.0.2

References & Advisories

πŸ”— http://osvdb.org/74159
πŸ”— http://www.ibm.com/software/lotus/symphony/buzz.nsf/web_DisPlayPlugin?open&unid=9717F6F587AAA939852578D300404BCF&category=announcements
πŸ”— http://www.ibm.com/software/lotus/symphony/idcontents/releasenotes/en/readme_fixpack3_standalone_long.htm
πŸ”— http://www.ibm.com/support/docview.wss?uid=swg21505448
πŸ”— http://www.securityfocus.com/bid/48936
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/68891
πŸ”— https://www-304.ibm.com/jct03001c/software/lotus/symphony/idcontents/releasenotes/en/readme_embedded_in_fixpack3_long.htm
πŸ”— http://osvdb.org/74159

Related Vulnerabilities

CVE-2011-288410.0

Multiple unspecified vulnerabilities in IBM Lotus Symphony 3 before FP3 have unknown impact and attack vectors, related to "critic...

CVE-2008-19659.3

Argument injection vulnerability in the cai: URI handler in rcplauncher in IBM Lotus Expeditor Client for Desktop 6.1.1 and 6.1.2,...

CVE-2012-01929.3

Multiple integer overflows in vclmi.dll in the visual class library module in IBM Lotus Symphony before 3.0.1 might allow remote a...

CVE-2010-52046.9

Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 1.3.0 20090908.0900 allow local users to gain privileges via ...