IBM issues fixes for flaws in Lotus Notes 6.5.4 and 7.0

By Edmund X. DeJesus 13 Feb 2006 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

IBM Corp. announced fixes on Saturday to remedy six "highly critical" security flaws in Lotus Notes versions 6.5.4 and 7.0. Malicious attackers could exploit the flaws to execute arbitrary code or delete arbitrary files. Upgrading to version 6.5.5 or 7.0.1 fixes the flaws, which mainly affect the Notes attachment viewer. Secunia Research reported the vulnerabilities to IBM.

The first flaw occurs when a user of the Notes attachment viewer attempts to extract a file with a long filename from a ZIP archive. A boundary error can cause a stack-based buffer overflow, allowing execution of arbitrary code. This flaw is confirmed in version 6.5.4 and may occur in other versions.

The second flaw is similar, involving extraction of a file with a long filename from an attached UUE file. Again, a boundary error can cause a stack-based buffer overflow, allowing execution of arbitrary code. This flaw is known to occur in versions 6.5.4 and 7.0

A third flaw involves generating previews of compressed files in attached ZIP, UUE or TAR files, using the Notes attachment viewer. Malicious users can exploit this flaw to delete arbitrary files. While this flaw is confirmed in versions 6.5.4 and 7.0, it may also occur in prior versions.

The fourth flaw is similar to the first and second, but involves TAR files. This flaw occurs in versions 6.5.4 and 7.0, and possibly in prior versions.

The fifth flaw occurs in the HTML speed reader when handling very long links. This allows execution of arbitrary code and occurs in versions 6.5.4 and 7.0, and possibly in prior versions.

The final flaw also occurs in the HTML speed reader and causes a stack-based buffer overflow for very long links. Execution of arbitrary code is possible in versions 6.5.4 and 7.0, and possibly in prior versions.

Although upgrading is recommended, IBM has also provided workarounds for these vulnerabilities. IBM notes that, "users [should] use caution when opening or viewing unsolicited file attachments."

The announcement comes less than two weeks after the successful and well-attended Lotusphere 2006. Industry leader Lotus Notes has over 120 million users and has experienced growth of over 10% in 2005. Analysts note that, in its over-15-year history, Lotus Notes has had only a handful of security issues.

Edmund X. DeJesus (dejesus@compuserve.com) is a freelance writer in Norwood, Mass.

Digg This!     StumbleUpon     Del.icio.us

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary