Intrusion Prevention

IBM.Lotus.Quickr.qp2.ActiveX.Control.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in IBM Lotus Quickr.
The vulnerability is due to an improper boundary check condition in the application when handling an overly string being passed to either the Attachment_Times or Import_Times property. An attacker can trick an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the application.

Affected Products

IBM Lotus Quickr 8.2 for Domino

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply patch available from the website.
http://www-304.ibm.com/support/docview.wss?uid=swg21596191

CVE References

CVE-2013-3026 CVE-2012-2176